Product Security Engineer - Embedded

Overview

We are seeking a full-time Product Security Engineer - Embedded for our Product Security team in our Olathe, KS location. Product Security Engineers are instrumental in shaping the future of Garmin's products. They apply systems, software, and security architecture knowledge, tools, and principles to Garmin's product development efforts, advising development teams on threats, mitigations, and methods to secure Garmin products and services; support the design and security of products across all business segments with exemplary pragmatic judgement on threat likelihood, impact, and remediation.

Essential Functions

• Partner with Product Engineering Teams across our consumer segments to build superior products that are an essential part of our customers' lives.

• Understand current and emerging security threats; conduct system security risk assessments; and advise how to mitigate threats

• Stay abreast of new security technologies and leverage them with our development teams to protect our users with a focus on the user experience.

• Identify, research, and evaluate emerging regulations, industry standards, and best practices. Make pragmatic recommendations to meet our obligations while prioritizing Garmin's end customers.

• Develop a strategic product security road map, focused on ensuring success many years into the future.

• Develop and promote policy, processes, tools, and automation which integrate security into our development lifecycle

• Provide security focused training and awareness

Basic Qualifications

• Bachelor's Degree in Computer Science, Electrical Engineering, Computer Engineering, Software Engineering, Aerospace Engineering, Math, Physics or related field AND a minimum of 5 years relevant experience OR an equivalent combination of education and experience
• Excellent academics (cumulative GPA greater than or equal to 3.0 as a general rule)
• Demonstrated expertise and understanding of security techniques and processes, including security control frameworks, threat modeling, security measure design, and vulnerability assessment.
• Demonstrates strong and effective verbal, written, and interpersonal communication skills
• Demonstrates ability to work well with others under challenging circumstances
• Must possess pragmatic business analysis skills and use them for threat prioritization
• Must possess detailed knowledge and experience with high level language structure in C, C++, C# and/or Java relevant to Garmin's business needs
• Must possess knowledge of Garmin's product lines and customers

Desired Qualifications

• Experience and/or knowledge of industry regulations and standards (NIST, ISO, CIS, EU RED, etc)
• Relevant information security experience with working knowledge of cryptography, Public Key Infastructure (PKI), software security (AppSec), and hardware-based security controls
• Demonstrated proficiency with embedded systems development
• Demonstrated proficiency in Product Security Penetration Testing
• Outstanding academics (cumulative GPA greater than or equal to 3.5)

Garmin International is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, veteran's status, age or disability.

This position is eligible for Garmin's benefit program. Details can be found here: Garmin Benefits