Firmware Engineer - Security
Indexed description
This role is responsible for investigating, analyzing, and resolving security vulnerabilities, supporting regulatory and standards compliance, and partnering with firmware and platform engineering teams to embed security‑by‑design practices throughout the product lifecycle. The successful candidate will play a key role in ensuring Vertiv products meet evolving cybersecurity expectations while maintaining reliability and performance in critical customer environments.
Responsibilities
- Investigate reported and internally discovered firmware vulnerabilities across embedded and gateway platforms.
- Perform security analysis of embedded firmware packages, update mechanisms, and exposed interfaces (network, diagnostic, field service).
- Support secure boot, firmware signing, and update validation implementations in collaboration with firmware engineering teams.
- Conduct threat modeling and risk assessments for embedded platforms and interface exposure.
- Drive vulnerability response workflows, including root cause analysis, remediation tracking, and verification.
- Ensure alignment with product cybersecurity standards and regulations, including IEC 62443, ISO 27001, NIS2, and CRA‑related obligations.
- Review and maintain SBOMs and supplier security documentation to support compliance and supply‑chain security requirements.
- Partner with QA and firmware teams on security testing, validation, and release readiness.
- Contribute to internal security requirements, checklists, and conformance matrices for embedded platforms.
- Bachelor’s degree in Computer Engineering, Computer Science, Electrical Engineering, or a related technical field.
- 3+ years of experience resolving security issues in embedded firmware
- 3+ years of experience with Linux-based secure firmware development and testing
- 3+ years of experience using the C/C++ programming language
- Working knowledge of embedded security concepts, including secure boot, firmware signing, cryptography, and secure update mechanisms.
- Familiarity with networked embedded systems and common protocols (e.g., TCP/IP, TLS, diagnostics interfaces).
- Ability to collaborate effectively with cross‑functional engineering, quality, and compliance teams.
- Experience with product cybersecurity standards such as IEC 62443, ISO/SAE 21434, or similar industrial/OT security frameworks.
- Familiarity with SBOM formats and tooling (e.g., CycloneDX, SPDX).
- Experience supporting security compliance or regulatory readiness for embedded products.
- Background in firmware development using C/C++ or reviewing embedded firmware code for security considerations.
The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.
OUR CORE PRINCIPALS: Safety. Integrity. Respect. Teamwork. Inclusion.
OUR STRATEGIC PRIORITIES
- High-Performance Culture
- Customer Focus
- Operational Excellence
- Innovation
- Financial Strength
- Own it
- Act with urgency
- Foster a customer-first mindset
- Think big and execute
- Lead by example
- Drive continuous improvement
- Learn and seek out development
- Promote transparent & open communication
Work Authorization
No calls or agencies please. Vertiv will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas such as E, F-1, H-1, H-2, L, B, J, or TN or who need sponsorship for work authorization now or in the future, are not eligible for hire.
Equal Opportunity Employer
Vertiv is an Equal Opportunity/Affirmative Action employer. We promote equal opportunities for all with respect to hiring, terms of employment, mobility, training, compensation, and occupational health, without discrimination as to age, race, color, religion, creed, sex, pregnancy status (including childbirth, breastfeeding, or related medical conditions), marital status, sexual orientation, gender identity / expression (including transgender status or sexual stereotypes), genetic information, citizenship status, national origin, protected veteran status, political affiliation, or disability. If you have a disability and are having difficulty accessing or using this website to apply for a position, you can request help by sending an email to [email protected] .
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search