RISCstar is looking for an experienced software engineer with a strong background in secure firmware development to join our team. You will work on security-critical components, including ARM Trusted Firmware (TF-A), U-Boot, Secure Boot, OP-TEE, and the Linux kernel, to ensure robust security for embedded and edge computing platforms.
Experience
5+ years
Job Location
Europe or North America
Position Summary
RISCstar is looking for an experienced software engineer with a strong background in secure firmware development to join our team. You will work on security-critical components, including ARM Trusted Firmware (TF-A), U-Boot, Secure Boot, OP-TEE, and the Linux kernel, to ensure robust security for embedded and edge computing platforms.
Key Responsibilities
Develop, maintain, and optimize ARM Trusted Firmware (TF-A), U-Boot, and secure boot implementations.
Develop and maintain trusted execution environments using OP-TEE. ● Integrate and enhance security features in the Linux kernel, including secure boot flows, cryptographic frameworks, and access control mechanisms.
Debug and analyze security vulnerabilities, applying patches and mitigations to enhance system security.
Collaborate with hardware, security, and software teams to define secure boot and firmware update strategies.
Contribute to upstream open-source projects related to firmware, bootloaders, security and the Linux kernel.
Provide technical documentation and guidance on security best practices for internal and external teams.
Experience with Git
Required Skills and Experience
Hands on experience with systems based on Arm architecture.
Must have strong experience with ARM Trusted Firmware (TF-A), U-Boot, Secure Boot, OP-TEE, and Linux kernel development.
Deep understanding of secure boot flows, firmware signing, key management, and cryptographic protocols.
Proficiency in C programming.
Experience with Yocto/OpenEmbedded, Buildroot, or other embedded Linux build systems.
Hands-on experience debugging low-level firmware issues using tools such as JTAG, GDB and tracing.
Ability to be productive in a globally distributed team through self discipline and self motivation, delivering according to a schedule.
Desired Skills and Experience:
Familiarity with ARM/AArch64 assembly.
Experience with Yocto/OpenEmbedded
Specific experience of secure boot flows and key management for NXP i.MX platforms
Experience with hardware security features such as Trustzone, TPM (Trusted Platform Module), HSMs (Hardware Security Modules), or secure enclave technologies.
Knowledge of memory protection, secure inter-process communication (IPC), and privilege separation techniques.
Experience developing trusted applications to run in OP-TEE
Contributions to U-Boot, TF-A, OP-TEE, or the Linux kernel.
Strong working knowledge of open source development tools and methodologies.
Travel:
Occasional travel will be required for this position.
Why Join RISCstar Solutions?
Career Growth: Take on a high-visibility role with significant opportunities to make a measurable impact on revenue and market presence. Grow a new team, establish new and effective processes and best practices
Collaborative Environment: Work with passionate, industry-leading experts in a dynamic and supportive workplace.
Flexibility: Enjoy remote work options while engaging with global teams and clients.
Entrepreneurial: Join a dynamic and quickly growing software startup at the ground floor and be an integral part of the team that helps us soar to new heights while enabling our customers
All RISCstar employees have a stake in the success of the company via our incentive stock option program.
