Join one of the world's largest industrial security organizations and help define the security foundations of products used by millions of people worldwide.
At
NXP's Competence Center Crypto & Security (CC C&S) , security is at the core of everything we do. Our experts drive innovation from advanced security research and architecture to deployment in automotive, industrial, IoT, mobile, and edge processing solutions.
We are looking for an experienced
Software Security Architect
to join our Software Security Architecture team and lead the strategic implementation of the European
Cyber Resilience Act (CRA)
across NXP's product portfolio.
This is a highly visible role that combines security architecture, regulatory leadership, threat analysis, and cross‑functional influence. You will have the opportunity to shape how security is embedded into products throughout their entire lifecycle while working alongside recognized experts in product security and secure system design.
If you are passionate about secure embedded systems, product security, and driving industry‑leading security practices, we would love to hear from you.
You will
Define and drive the Cyber Resilience Act (CRA) compliance strategy for NXP's MCU and MPU product portfolios within the Security Arcitecture team.
Influence security architecture decisions across multiple product lines and business units.
Translate regulatory requirements into actionable security controls, architecture principles, and engineering requirements.
Drive security‑by‑design methodologies across both legacy products and new product introductions (NPI).
Lead system‑level threat modeling, attack surface analysis, and security risk assessments for complex embedded and semiconductor‑based products.
Establish security requirements and ensure end‑to‑end traceability throughout the development lifecycle.
Support audit readiness through security evidence generation, compliance documentation, and risk management activities.
Collaborate with product architects, engineering teams, product management, compliance experts, and senior stakeholders worldwide.
Drive adoption of security best practices, frameworks, and standards across NXP's product portfolio.
You have
Bachelor's, Master's, or PhD degree in Computer Science, Cybersecurity, Information Security, Software Engineering, Electrical Engineering, Computer Engineering, Embedded Systems, or a related technical field.
Strong experience in embedded systems security and software and/or hardware security architecture.
Proven expertise in threat modeling, secure system design, and security risk assessment.
Deep understanding of security technologies such as: Secure Boot
Cryptography and Key Management
Firmware Protection
Device Identity and Root of Trust
Secure Update Mechanisms
Experience translating security requirements into practical technical architectures and implementations.
Strong analytical skills with a system‑level view of security challenges.
Excellent stakeholder management and communication skills.
Ability to drive security initiatives across global and cross‑functional teams.
Experience in one or more of the following areas is highly desirable
Security architecture for embedded, IoT, automotive, or industrial systems.
Security certification frameworks such as: PSA Certified
SESIP
Common Criteria
Product security regulations and compliance frameworks.
Cyber Resilience Act (CRA) implementation or preparation activities.
Secure development lifecycle (SDL) practices.
Security assessments, penetration testing, or vulnerability analysis.
Secure hardware/software co‑design.
Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.
Benefits include home office, flexible working time, meal benefits, and other attractive benefits.
#J-18808-Ljbffr
At
NXP's Competence Center Crypto & Security (CC C&S) , security is at the core of everything we do. Our experts drive innovation from advanced security research and architecture to deployment in automotive, industrial, IoT, mobile, and edge processing solutions.
We are looking for an experienced
Software Security Architect
to join our Software Security Architecture team and lead the strategic implementation of the European
Cyber Resilience Act (CRA)
across NXP's product portfolio.
This is a highly visible role that combines security architecture, regulatory leadership, threat analysis, and cross‑functional influence. You will have the opportunity to shape how security is embedded into products throughout their entire lifecycle while working alongside recognized experts in product security and secure system design.
If you are passionate about secure embedded systems, product security, and driving industry‑leading security practices, we would love to hear from you.
You will
Define and drive the Cyber Resilience Act (CRA) compliance strategy for NXP's MCU and MPU product portfolios within the Security Arcitecture team.
Influence security architecture decisions across multiple product lines and business units.
Translate regulatory requirements into actionable security controls, architecture principles, and engineering requirements.
Drive security‑by‑design methodologies across both legacy products and new product introductions (NPI).
Lead system‑level threat modeling, attack surface analysis, and security risk assessments for complex embedded and semiconductor‑based products.
Establish security requirements and ensure end‑to‑end traceability throughout the development lifecycle.
Support audit readiness through security evidence generation, compliance documentation, and risk management activities.
Collaborate with product architects, engineering teams, product management, compliance experts, and senior stakeholders worldwide.
Drive adoption of security best practices, frameworks, and standards across NXP's product portfolio.
You have
Bachelor's, Master's, or PhD degree in Computer Science, Cybersecurity, Information Security, Software Engineering, Electrical Engineering, Computer Engineering, Embedded Systems, or a related technical field.
Strong experience in embedded systems security and software and/or hardware security architecture.
Proven expertise in threat modeling, secure system design, and security risk assessment.
Deep understanding of security technologies such as: Secure Boot
Cryptography and Key Management
Firmware Protection
Device Identity and Root of Trust
Secure Update Mechanisms
Experience translating security requirements into practical technical architectures and implementations.
Strong analytical skills with a system‑level view of security challenges.
Excellent stakeholder management and communication skills.
Ability to drive security initiatives across global and cross‑functional teams.
Experience in one or more of the following areas is highly desirable
Security architecture for embedded, IoT, automotive, or industrial systems.
Security certification frameworks such as: PSA Certified
SESIP
Common Criteria
Product security regulations and compliance frameworks.
Cyber Resilience Act (CRA) implementation or preparation activities.
Secure development lifecycle (SDL) practices.
Security assessments, penetration testing, or vulnerability analysis.
Secure hardware/software co‑design.
Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.
Benefits include home office, flexible working time, meal benefits, and other attractive benefits.
#J-18808-Ljbffr
Software Security Architect - Cyber Resilience Act (CRA) & Product Security (m/f/d) Arbeitgeber: NXP Semiconductors N.V.
NXP ist ein hervorragender Arbeitgeber, der Ihnen die Möglichkeit bietet, Expertise im Bereich der eingebetteten Sicherheit und Schwachstellenanalyse aufzubauen. In einem unterstützenden Team von erfahrenen Ingenieuren arbeiten Sie an sicherheitskritischen Systemen und profitieren von flexiblen Arbeitszeiten sowie attraktiven Zusatzleistungen wie Homeoffice und Essenszuschüssen. Hier haben Sie die Chance, sich in einem dynamischen Umfeld weiterzuentwickeln und aktiv zur Verbesserung der Sicherheit von Produkten der nächsten Generation beizutragen.