Senior Product Security Engineer

Position Overview

We are looking for a Senior Product Security Engineer to support security initiatives for our consumer electronics products and help shape the next wave of innovation at Bose.

• Architect and design products to ensure secure practices, data confidentiality, and system integrity.
• Engineer and implement ARM Trust Zone secure applets and develop cryptographic IoT device identities and root of trust.
• Streamline secrets, key management, cryptography, and credential management.
• Define security requirements and conduct security assessments.
• Architect and implement protections for intellectual property, including anti‑reverse engineering, secure firmware distribution, and debug interface lockdown.
• Ensure compliance with applicable security regulations and standards (e.g., EU CRA, ETSI EN 303‑645, NIST) and support audits and certifications.
• Advise engineering peers on security matters through architectural guidance, code/design reviews, and solution development.
• Improve vulnerability discovery, patching processes, and lead responses to external security threats.
• Code independently with minimal oversight and design system architecture with guidance.
• Collaborate with cross‑functional teams such as product firmware, devOps, cloud engineering, manufacturing, and program management.
• Perform security testing on products and support security fix implementations.
• Design and maintain private X.509 and JWK chains of trust used for validating authenticity of portable audio devices.
• Stay up‑to‑date on security news, relevant technologies, and security opportunities.

• Experience developing for embedded systems and Linux platforms in C, C++.
• Strong knowledge of cryptographic theory and engineering, including encryption, hashing, signing, digital certificates, and hardware security modules (HSMs).
• Building internal security applications with cryptographic guarantees such as firmware encryption and signing, custom developer enablement tools, secure asset provisioning, etc.
• Experience aligning embedded product security practices with regulatory and compliance requirements (EU CRA, NIST, ISO 27001, IEC 62443 or similar frameworks).
• Experience implementing IP protection and anti‑tamper mechanisms in embedded systems—including secure boot enforcement, firmware encryption, and hardware debug port protection.
• Experience mitigating dependency or code‑level defects including memory‑management issues, input validation, timing attacks, broken authentication, side channels.
• Experience with computer networking focused on security and IoT applications.
• Bachelor’s degree in Computer Science or equivalent; a master’s degree is beneficial.
• Six or more years of industry experience working in firmware development with a focus on security.

The hiring range for this position in Framingham, Massachusetts is $142,600–$196,000. Additional benefits include bonuses, comprehensive health and welfare benefits, a 401(k) plan, and employee discounts.

Bose is an equal‑opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status, or any other legally protected characteristics. The EEOC’s “Know Your Rights:
Workplace discrimination is illegal” poster is available at https://(Use the "Apply for this Job" box below). Your Rights
6.. Bose is committed to providing reasonable accommodations to individuals with disabilities. Please contact _ for accommodation requests.