Senior Software & Security Architect- Embedded Cybersecurity Platform - Remote

AURA TECHNOLOGIES, LLC (AURA) is an advanced research and development company that designs cutting‑edge, government‑grade technology for the U.S. Department of Defense and the private sector.

We are looking for a dedicated security architect to lead the implementation of a new embedded cybersecurity platform. The role will translate detailed security specifications into implementation‑level designs and working code for a hardened Intel/Linux appliance deployed in air‑gapped OT environments.

This is a greenfield implementation. You will write the most security‑sensitive components of the system from the ground up, including:

• Cryptographic key management services with hardware‑rooted trust
• Certificate lifecycle management for offline and network‑constrained environments
• Secure boot chain and platform integrity verification
• OS‑level hardening and mandatory access control configuration
• Integration with hardware security elements and platform trust anchors

You will work directly with the Chief Architect and will help build and mentor the engineering team, establish technical practices, and recruit additional developers.

• Embedded Linux – deep hands‑on experience with kernel configuration, initramfs, systemd, disk encryption, and mandatory access controls (SELinux or App Armor). You should have built or substantially modified production bare‑metal Linux images.
• TPM 2.0 and hardware root of trust – working experience with TPM‑based security: secure boot, measured boot, platform integrity, key sealing, and attestation.
• Air‑gapped and OT environments – design or deployment experience in disconnected, high‑assurance, or industrial control environments.
• PKI and X.509 – substantive experience with public key infrastructure, certificate chains, validation, revocation, and profiles.
• Systems programming – strong proficiency in C or C++ for systems‑level work, comfortable reading kernel code, debugging with strace and gdb, and reasoning about memory safety, concurrency, and isolation.
• U.S. citizenship and ability to pass a background investigation.

• Rust – production experience writing Rust for systems or embedded targets.
• Cryptographic engineering – practical experience with cryptographic libraries (OpenSSL, tpm2-tss, PKCS#11), secure protocol implementation, or HSM integration.
• OT security standards – familiarity with standards such as IEC 62443, NIST 800‑82, or equivalent.

• Security clearance (none needed for this role)
• Cloud or SaaS experience
• Web application security
• CISSP or similar management‑oriented certifications

• Administering PKI infrastructure
• Cloud architecture or Dev Ops
• Penetration testing or red‑teaming (your threat‑modeling instincts will be valued)
• Front‑end or UI development

• Greenfield architecture – you build from a clean sheet with a fully specified security architecture.
• Genuinely hard problems – hardware‑rooted key management, tamper‑responsive security, and certificate lifecycle in offline environments.
• Research culture – AURA pursues SBIR, STTR, and applied research projects and encourages engineers to champion research directions.
• Autonomy and ownership – as the first security‑focused developer you shape tooling, approach, and technical culture for the team.

• Fortune 500‑level Health Care Coverage
• Unlimited Leave Program after 60 days
• 10 paid holidays & paid winter break
• 401(k) Safe Harbor contributions
• Employee discount program

AURA Technologies, LLC is an Equal Opportunity Employer and affirmative action employer of veterans protected under the Vietnam Era Veterans’ Readjustment Assistant Act (VEVRAA). We are a drug‑free workplace and all job offers are contingent on a successful criminal background check and drug screen. As a U.S. Federal Contractor, AURA uses the Department of Homeland Security e‑Verify system to determine eligibility to legally work in the United States.