Enable job alerts via email!
Embedded Security Developer
McNally Recruitment Ltd
Cumbernauld
Hybrid
GBP 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A UK recruitment firm is seeking an Embedded Security Developer to ensure secure design and implementation of firmware and software. Ideal candidates will have over 5 years of experience in embedded systems and strong C/C++ skills. The role is hybrid, requiring 4 days in the Scottish office, and emphasizes secure coding practices and compliance with industry standards. Applicants must be authorized to work in the UK.
Qualifications
- Minimum 5 years of experience in developing embedded firmware.
- Strong understanding of common vulnerabilities including OWASP Top 10.
- Experience implementing DevSecOps best practices.
Responsibilities
- Perform security requirements analysis.
- Conduct risk analysis and threat modelling.
- Ensure secure design principles are applied.
Skills
Education
Tools
The Embedded Security Developer will be responsible for ensuring the secure design and implementation of embedded firmware and software components within our product portfolio. This role involves applying secure coding practices, performing threat modeling, and ensuring compliance with industry standards and internal processes. The ideal candidate will have a strong background in embedded systems development and a passion for cybersecurity.
PLEASENOTE the client will only accept candidates who are authorised to work in the UK, without the requirement for sponsorship or any type of visa (e.g. dependant/spousal, post-study etc.).
In addition, this role hybrid based with 4 days in the Scottish office, therefore you should currently be located in Scotland.
- Perform security requirements analysis
- Conduct risk analysis and threat modelling
- Ensure secure design principles are applied such as least privilege, defence in depth, and secure defaults
-
Ensure secure implementation of requirements and threat mitigations, including:
- Follow secure coding guidelines to prevent common vulnerabilities (e.g., buffer overflows, injection flaws)
- Application of Static Code Analysis to identify security vulnerabilities in code
- Application of Software Composition Analysis to ensure supply chain security
- Unit testing and code reviews
- Defect analysis and remediation
- Ensure compliance with internal processes and applicable standards (e.g., IEC 62443, ISO 27001)
- Support internal and external audits as required
- Drive continuous improvement by staying updated on emerging threats, tools, and best practices
- Occasional travel may be required, such as training or customer support.
- Minimum 5 years of experience in developing embedded firmware
- Engineering degree in Software, Computer Science, Cybersecurity or equivalent demonstrated knowledge.
- Strong C/C++ programming skills
- Understanding of encryption algorithms, key management, and secure protocols (TLS, SSH, etc.)
- Strong understanding of common vulnerabilities (e.g., OWASP Top 10, CWE/SANS Top 25)
- Familiarity with Linux, Windows, RTOS and network protocols (TCP/IP, DNS, HTTP/S)
- Understanding of industrial protocols (e.g., Serial, Modbus, HART)
- Knowledge of industry standards: IEC 62443, ISO 27001, NIST, OWASP
- Experience implementing DevSecOps best practices; Azure DevOps experience is a plus
- Self‑directed and motivated in a team orientated environment
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
