Conduct security architecture reviews and threat modeling for embedded platforms including RTOS, Linux, Android, and QNX.
Perform vulnerability assessments, firmware analysis, and penetration testing for automotive ECUs, medical IoT devices, and OTT devices.
Design and guide implementation of secure boot, firmware encryption, key management, and secure OTA update mechanisms.
Evaluate and integrate Hardware Security Modules (HSM), Trusted Platform Modules (TPM), Secure Elements (SE), and Trusted Execution Environments (TEE).
Promote and enforce secure coding practices for C/C++/Python embedded codebases, including MISRA and CERT compliance where applicable.
Lead implementation of cybersecurity compliance frameworks such as ISO 21434 (Automotive), FDA Cybersecurity Guidance (Medical Devices), and OWASP IoT standards.
Conduct static and dynamic application security testing (SAST, DAST, SCA) and manage vulnerabilities across the product lifecycle.
Coordinate with compliance and validation teams for cybersecurity documentation, SBOM generation, and vulnerability disclosure tracking.
Perform risk assessments for connected interfaces including CAN, BLE, Wi-Fi, Ethernet, USB, HDMI, and recommend mitigation strategies.
Mentor junior engineers and provide guidance on secure design patterns across product development teams.
