About the role
AI summarisedThis role involves implementing SSD security firmware test strategies and automation, focusing on cryptographic protocols, secure boot chains, and root-cause analysis of security failures for storage products.
IDMOnsiteSTPG
Key Responsibilities
- Design and implement grey‑box / white‑box security tests for firmware features and protocols
- Analyze security failures from regressions, customer issues, and field escapes with deep root‑cause analysis
- Drive security test automation, regression integration, and reporting
- Partner with firmware developers and architects on secure design and code reviews
- Communicate security risks, coverage, and mitigation plans to cross‑functional teams and leadership
- Mentor engineers and provide technical leadership in SSD security validation
Requirements
- B.S. or higher in Electrical Engineering, Computer Engineering, Computer Science, or equivalent
- 3+ years experience in SSD firmware testing or firmware development
- Strong experience in SSD security testing including TCG Opal, Enterprise SSC, and NVMe security commands
- Experience with SPDM, DICE / CMA, and platform authentication flows
- Hands‑on knowledge of Caliptra or hardware Root of Trust architectures
- Experience validating secure boot, ROM‑based boot chains, and firmware measurement flows
- Applied cryptography knowledge including AES, RSA, ECC, SHA‑2 / SHA‑3, and Post-Quantum Cryptography concepts
- Familiarity with FIPS 140‑2 / FIPS 140‑3 concepts and crypto module behavior
- Strong background in embedded firmware systems and Python‑based test automation
- Solid understanding of SSD security architecture and storage industry protocols such as NVMe and PCIe