Platform Security Engineering - OpenBMC

📋 Description

• Design, build, and ship OpenBMC firmware and manageability features.
• Build the management stack on DMTF/OCP standards (MCTP, SPDM, Redfish).
• Implement BMC-to-BIOS/host communications, eSPI/LPC, thermal/fan/power management.
• Work the hardware/firmware boundary: I2C/I3C, SPI, PCIe, SMBus, U-Boot, Linux.
• Own the BMC security posture: secure boot, root of trust, attestation, authenticated update.
• Lead threat modeling and secure design reviews; coordinate disclosures.

🎯 Requirements

• 8+ years in systems security; at least 5 years in firmware/hardware security.
• Strong cross-functional leadership and direction setting.
• Hands-on OpenBMC/BMC firmware on x86/Arm, from bring-up through production; with D-Bus/sdbusplus.
• Strong C/C++ and Python; deep Linux user-space/kernel fundamentals; Yocto/OpenEmbedded.
• Security-minded firmware approach; not bolted on afterward.
• Upstream contributions to OpenBMC, U-Boot, DMTF, or OCP.

🎁 Benefits

• Competitive compensation and benefits, including equity matching.
• Generous vacation and parental leave.
• Flexible working hours.
• Office space in San Francisco.