Leading validation and certification testing of 3rd-party applications from a platform integrity and security perspective.
Ensuring applications do not compromise device or firmware security.
Impact system stability, uptime, or reliability.
Exceed controller processing, memory, or storage resources, or violate file system constraints.
Misuse system interfaces, APIs, or communication channels.
Performing security-focused testing, including vulnerability analysis.
Evaluating application behavior within embedded Linux environments, including process isolation, file system access, resource consumption, system calls, and permissions.
Validating safe interaction with controller firmware, OS, and hardware interfaces.
Conducting compatibility and integration testing with controller APIs and communication protocols: REST, MQTT, CoAP.
Performing network and protocol analysis using tools such as Wireshark and packet sniffers.
Testing and validating serial communication interfaces and low-level protocols.
Monitoring runtime behavior to detect abnormal or malicious activity.
Developing and maintaining automated test frameworks and CI-CD pipelines.
Writing scripts for test automation, monitoring, and security validation.
Defining and enforcing application acceptance criteria and certification standards.
Identifying risks introduced by untrusted or third-party code execution.
Documenting security findings, validation results, and certification outcomes.
Collaborating with engineering, product, and external partners on secure integration practices.
Mentoring junior engineers and promoting best practices in embedded QA and security testing.

Requirements

Bachelor’s degree in Computer Engineering, Computer Science, or related field (or equivalent experience).
5+ years of QA experience with embedded systems, firmware, or IoT devices.
Strong understanding of Linux-based embedded systems.
Experience with system-level testing.
Solid knowledge of hardware/software/firmware constraints in embedded environments.
Experience with resource monitoring, benchmarking, and profiling (CPU, memory, storage).
Hands-on experience with REST APIs, MQTT, CoAP.
Experience with network analysis and packet capture tools (e.g., Wireshark).
Familiarity with serial communication protocols (UART, RS-232, RS-485).
Strong experience with test automation frameworks and environments.
Proficiency in Bash, or similar scripting languages.
Experience in software security testing, vulnerability assessment, or system hardening validation.
Strong understanding of QA methodologies, test design, and defect tracking.
Excellent troubleshooting, analytical, and problem-solving skills.
Strong communication skills, including working with external partners.
Experience with embedded platform certification programs or app validation frameworks is preferred.
Understanding of secure application onboarding and approval workflows for embedded or IoT platforms is preferred.
Experience validating untrusted or third-party code execution in constrained environments is preferred.
Familiarity with sandboxing, process isolation, or lightweight containerization in embedded Linux is preferred.
Knowledge of firmware security concepts (secure boot, code signing, chain of trust, TEE) is preferred.
Background in penetration testing, fuzz testing, or threat modeling is preferred.
Experience analyzing runtime system behavior and anomaly detection is preferred.
Familiarity with access control systems (PACS) and controller architectures is preferred.
Experience with secure firmware update mechanisms and device lifecycle management is preferred.

Benefits

Competitive salary and rewards package
Competitive benefits and annual leave offering, allowing for work-life balance
A vibrant, welcoming & inclusive culture
Extensive career development opportunities and resources to maximize your potential

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

embedded systemsfirmwareIoT devicesLinux-based systemstest automation frameworkssecurity testingvulnerability assessmentresource monitoringscripting (Bash)network analysis

Soft Skills

troubleshootinganalytical skillsproblem-solvingcommunicationmentoringcollaboration