Principal, Product Security Engineer HW/FW

As a Hardware/Firmware Product Security Engineer at Sandisk, you will play a crucial role in the Product Security Assurance team focusing on security considerations for Client and Enterprise storage products, specifically Solid State Drives (SSDs) incorporating hardware and firmware components. Your responsibilities will include providing clear technical guidance and risk mitigation advice to engineering and business leaders across various levels. You will contribute to evolving secure development practices at Sandisk to align with dynamic market trends, standards, and regulatory requirements. Throughout the product development lifecycle, you will offer expert advice on secure development practices, assess security risks, conduct threat modeling activities, and validate security requirements at both component and system levels. Your role will involve leading security risk assessments, guiding threat modeling activities, and participating in the validation of security requirements. The ideal candidate for this position has a strong background in architecting and developing hardware/firmware solutions that adhere to the highest cybersecurity standards. If you are highly motivated, passionate about technology, and committed to staying abreast of the latest industry trends and technologies, we invite you to join our collaborative team to innovate the next big thing in data! Qualifications: Basic Qualifications (Required Skills & Experience): - Bachelor's degree or higher in Computer Science, Engineering, or a relevant field from an accredited college/university - Designing and engineering security requirements and controls for HW/FW (storage experience is a plus!) - Familiarity with cybersecurity standards and best practices - Security architecture design and integration for hardware and firmware - Understanding of low-level hardware-software interactions, such as storage in flash, RAM, or cache - Proficiency in security threats, risk assessments, threat modeling, risk mitigation, and incident reporting - Experience working with cryptographic protocols/libraries Typical Minimum Experience Preferred (Desired Skills/Experience): - 5-7 years of related experience preferred - 3+ years of embedded hardware/software design and development - Knowledge of FIPS 140 - Experience in real-time software development, vehicle electronics and controls, embedded systems design, application security, penetration testing, or incident response - Experience with embedded software development is an added advantage Sandisk values diversity and is committed to maintaining confidentiality in accordance with EEO guidelines.,