Careers

Location: Jacksonville Area or remote (USA)

We are looking for an experienced Embedded Product Security Engineer to strengthen the security posture of our embedded software products and development ecosystem. In this role, you will work at the intersection of embedded software engineering, cybersecurity, and DevSecOps, helping development teams build secure, compliant, and maintainable products.

You will be responsible for implementing and operating vulnerability management processes, integrating security tooling into CI/CD pipelines, supporting secure software supply chain practices, and collaborating closely with engineering teams across complex embedded environments.

This position requires strong hands-on expertise in embedded C/C++ ecosystems, static analysis, software composition analysis, SBOM management, and automation using modern DevSecOps practices.

Your Responsibilities

• Build and maintain end-to-end vulnerability management processes, including:
  • centralized vulnerability tracking,
  • ownership assignment,
  • traceability,
  • CVE monitoring,
  • triage and prioritization,
  • false-positive management.
• Configure, maintain, and optimize SAST and SCA tooling for embedded C/C++ projects using:
  • Veracode,
  • Veracode SCA,
  • yocto-cve-check,
  • and related security tooling.
• Prepare embedded C/C++ codebases for static analysis by managing:
  • preprocessing,
  • compilation environments,
  • debug symbols,
  • and analysis requirements.
• Generate and maintain Software Bills of Materials (SBOMs) using standards such as:
  • CycloneDX,
  • SPDX.
• Integrate security controls and automated security gates into CI/CD workflows using:
  • GitHub Actions,
  • reusable workflows,
  • composite actions,
  • and infrastructure automation.
• Support software repository migrations into GitHub from legacy platforms including:
  • SVN,
  • Bitbucket,
  • GitLab.
• Work across heterogeneous embedded environments and toolchains, including:
  • Yocto,
  • Buildroot,
  • RTOS,
  • bare-metal systems,
  • CMake,
  • Make,
  • GCC ARM,
  • IAR,
  • vendor SDKs and HALs.
• Develop automation and engineering tooling using:
  • Python,
  • Bash,
  • Linux command-line environments.
• Collaborate closely with software teams and technical stakeholders to:
  • explain security findings,
  • improve remediation workflows,
  • and support secure development practices.
• Contribute to secure software development lifecycle (SSDLC) initiatives and product compliance activities.

Requirements

• Proven experience in:
  • Product Security,
  • DevSecOps,
  • Secure Software Engineering,
  • or Security Compliance.
• Strong practical knowledge of:
  • vulnerability management,
  • SAST/SCA workflows,
  • CVE monitoring,
  • risk prioritization,
  • and false-positive handling.
• Hands-on experience with static and software composition analysis tools for C/C++ projects, especially:
  • Veracode,
  • Veracode SCA.
• Experience preparing embedded C/C++ projects for automated security analysis.
• Knowledge of SBOM generation standards and software supply chain security practices.
• Experience integrating security tooling into CI/CD pipelines, preferably with GitHub Actions.
• Strong GitHub experience, including repository administration and migrations from legacy VCS platforms.
• Solid understanding of embedded software development environments, including:
  • embedded Linux,
  • RTOS,
  • bare-metal firmware,
  • cross-compilation toolchains,
  • and embedded build systems.
• Practical scripting and automation skills using:
  • Python,
  • Bash,
  • Linux tooling.
• Strong communication skills and ability to collaborate effectively across multidisciplinary engineering teams.
• Ability to work independently in complex, legacy, or heterogeneous technical environments.

Nice to Have

• Experience with:
  • FreeRTOS,
  • Zephyr,
  • Buildroot,
  • Yocto ecosystem security,
  • firmware signing,
  • secure boot,
  • supply chain security frameworks.
• Familiarity with:
  • ISO 21434,
  • IEC 62443,
  • FDA cybersecurity guidance,
  • or other product-security-related standards.
• Experience supporting compliance or certification activities.

Location: Gdansk, Poland

We are seeking a talented and motivated Embedded Software Engineer to join our team, where you’ll work with cutting-edge UWB (Ultra-Wideband) and LoRa (Long Range) radio technologies. This role involves collaborating with global clients and cross-functional teams to develop and enhance innovative embedded systems.

Key Responsibilities:

• Embedded Software Development: Design, troubleshoot, and debug embedded software to support enhancements and new products, with a particular focus on UWB/LoRa based systems.
• Radio Module Integration: Integrate and optimize UWB and LoRa radio modules within embedded systems, ensuring reliable data communication and efficient system performance.
• Hardware Compatibility: Analyze and determine hardware compatibility, collaborating with hardware teams to influence the design of systems incorporating UWB and LoRa modules.
• System Diagnostics and Optimization: Conduct in-depth diagnostics, troubleshooting, and performance optimization for embedded systems, particularly in distributed environments that utilize UWB and LoRa for connectivity.
• Technology and Process Advancement: Stay current with trends in embedded software practices, tools, and technologies, contributing insights to enhance the team’s development capabilities and software quality.
• Documentation and Collaboration: Document software designs, testing protocols, and troubleshooting procedures, and communicate effectively with both internal and external stakeholders to support successful project outcomes.

Requirements:

• Education: Bachelor’s or higher degree in IT, Mechatronics, Electronics, or equivalent practical experience.
• Experience: At least 2 years of hands-on experience in embedded software development, including work with Real-Time Operating Systems (FreeRTOS).
• Technical Skills:
  • System Architecture and RTOS: Strong understanding of computer architecture, RTOS, and microprocessor functionality. Basic knowledge of ARM or RISC-V architectures.
  • Embedded Systems Development: Proficiency in developing embedded systems, particularly on MCU platforms, with experience in bare metal and RTOS. Knowledge of compilation steps, linker scripts and startup code. Experience with STM32 or ESP32 MCUs
  • Board Support Package (BSP) Development: Proven experience with BSP development for microcontrollers, including familiarity with communication interfaces (e.g., SPI, I2C) and handling simple peripherals (A/D, D/A, general-purpose IO).
  • Programming Languages: Proficiency in Embedded C; experience in C# and Rust is a plus.
• Analytical and Problem-Solving Skills: Strong ability to troubleshoot and resolve complex issues, particularly in distributed systems integrating radio technologies.
• Communication Skills: Excellent written and verbal communication in English, with strong interpersonal skills.
• Additional Skills: Knowledge of UWB and LoRa technologies is highly desirable but not mandatory.

What We Offer:

• Competitive Compensation: Attractive salary with a comprehensive benefits package, including life insurance, private medical care, and Multisport / PZU Sport memberships. We offer a salary ranging from PLN 14,000 to 20,000 gross per month, depending on experience and qualifications.
• Flexible Working Hours: Options for flexible hours to support work-life balance.
• Stable Employment: Choose between an employment contract or B2B, both offering competitive compensation and long-term stability.
• Professional Growth: Significant opportunities to develop technical skills and advance your career by working on innovative projects.
• Collaborative Environment: A friendly and dynamic work culture with a team of highly qualified professionals.
• Global Experience: Engaging work with customers and suppliers worldwide, providing a diverse and stimulating work environment.