Job Summary
As a Lead Platform Security Engineer, you will serve as the technical architect for our next-generation Root of Trust (RoT) firmware. In this pivotal role, you will develop firmware for diverse RoT architecturesplay a crucial role in integrating cutting-edge RoT solutions into mass production.Job Responsibilities
Job Responsiblities
- Technical Execution & RoT Architecture: Lead the end-to-end design and implementation of modular RoT firmware stacks, ensuring code quality, scalability, and maintainability.
- Standards Compliance & Protocol Implementation: Define and enforce implementation strategies for SPDM, MCTP, PLDM, and DICE architectures, ensuring compliance with NIST 800-193 and OCP security standards across diverse platform configurations.
- Security-First Development Lifecycle: Architect and champion a Security-First development culture.
- Open Source Strategy & Community Leadership
- Cross-Functional Integration: Collaborate deeply with hardware and manufacturing teams to define security requirements, integrate diverse RoT IP (Caliptra, Intel PFR), and drive manufacturing success through secure provisioning workflows.
- Bridge RoT and BMC development efforts, implementing secure inter-subsystem communication (MCTP/SPDM) and coordinating integration of RoT security features into BMC management interfaces
Job Qualifications
Education & Experience
- Bachelor's or Master's degree in Computer Science, Electrical Engineering, or a related field.
- 8+ years of experience in Embedded Firmware, Platform Security, or System Architecture.
- Proven track record of designing secure boot flows and Chain of Trust from concept to deployment.
Technical Skills
- Languages & OS: Expert proficiency in C and Rust (Embedded); Zephyr RTOS architecture.
- Security Domain: Expert knowledge of PKI, Cryptography (ECC, RSA, SHA), and RoT concepts.
- Protocols: Familiarity with hardware interfaces (SPI, I2C, I3C).
- Familiar with OpenBMC
- CI/CD
- Community standard, MCTP, PLDM, SPDM and OCP standards
, BE AWARE OF FRAUD: When applying for a job at Jabil you will be contacted via correspondence through our official job portal with a jabil.com e-mail address; direct phone call from a member of the Jabil team; or direct e-mail with a jabil.com e-mail address. Jabil does not request payments for interviews or at any other point during the hiring process. Jabil will not ask for your personal identifying information such as a social security number, birth certificate, financial institution, driver's license number or passport information over the phone or via e-mail. If you believe you are a victim of identity theft, contact your local police department. Any scam job listings should be reported to whatever website it was posted in.
