Hardware and Embedded Security Engineer (AU)

Work with cutting edge technology, making the world a safer and more secure place. DroneShield (ASX:DRO) offers an opportunity to solve some of world’s most challenging technical problems in the Electronic Warfare, Artificial Intelligence and Machine Learning, RF sensing, Sensor Fusion and distributed systems. Working with high profile customers across militaries, government agencies, airports, critical infrastructure, law enforcement and many others.

 

With an approximately $1bn market capitalisation and having raised approximately $250m in 2024 alone, DroneShield is undergoing hypergrowth stage, fuelled by rapidly increasing use of drones for nefarious applications, from battlefield, to terrorism, to contraband delivery and commercial espionage.

 

This role is in the DroneShield Sydney headquarters in Pyrmont, Sydney. There are approximately 200 staff based in the 4,000sqm facility today, scheduled to grow to approximately 300 staff by end of 2026. Overseas on the ground presence includes Virginia (USA), Denmark, Germany and Dubai, as well as distributors in over 70 countries globally.

About the roleDroneShield is seeking a Hardware and Embedded Security Engineer with relevant experience to join the team in Sydney, NSW.
The ideal candidate will be responsible for providing security assurance of our range of Products. Key responsibilities include conducting sophisticated security assessments at hardware, firmware and application layer. Championing secure development practices by creating tooling and engineering pathways that increase velocity. Review new features and design security features required to support the threat model for our Products.
The successful candidate should have a strong background in computer science or relevant certifications, demonstrated experience in hardware and embedded security in high-stakes environments, and deep technical expertise in computer architecture, microcontrollers and embedded systems. They should also have knowledge of common hardware attacks and defence mechanisms. 
This position offers the opportunity to contribute to the security of hardware Products with complex threat models.

Responsibilities, Duties and Expectations 

• Continually improve the level of security assurance we provide to our Products
• Ensure the Products and Software meet high security, privacy, and compliance standards
• Conduct sophisticated targeted and end to end security assessments 
• Support developer productivity by prioritising developer tooling that reduces Toil and improves Developer Experience
• Promote continuous learning and improvement within the team
• Manage multiple concurrent projects and solve cross-product problems
• Establish partnerships and champion quality throughout the Embedded teams 
• Be the lead Hardware and Embedded security person

Qualifications, Experience and Skills 

• BS degree in Computer Science, Information Technology or similar technical field of study or equivalent practical experience. 
• Demonstrated experience working in prior Hardware security roles 
• Minimum 5 years’ experience in related roles. Roles could include:
  • Security Engineer
  • Reverse Engineer 
  • Penetration Tester
• Knowledge of the following would also be essential:
  • Comfortable on the command line in a Linux first environment
  • Penetration Testing
  • Application Security Reviews, RestFul/RPC APIs and Threat Modelling
  • Proficiency with Python, Go  and can peer review code / implementation / automation scripts
  • Knowledge of cryptographic protocols and their implementation in hardware
  • Familiarity with side-channel attacks and countermeasures
  • Understanding of secure boot processes and trusted execution environments
  • Proficiency in using hardware hacking tools (e.g., JTAG debuggers, chip programmers).
  • Knowledge of IoT security principles and common vulnerabilities.
  • Experience with firmware analysis and modification
• Knowledge of the following would also be desirable:
  • Strong problem-solving and analytical skills.
  • Ability to think creatively to identify potential security vulnerabilities.
  • Excellent communication skills to explain complex technical concepts.
  • Familiarity with relevant industry standards (e.g., Common Criteria, FIPS 140-2).
  • Experience with penetration testing methodologies applied to hardware.
  • Knowledge of secure hardware design principles.
  • Familiarity with supply chain security concepts
  • Software Defined Radio

Note for recruitment agencies: we do not accept floated candidates from external recruiters unless they were instructed to do so.