Senior Security Engineer (Tee/ ARM TrustZone)

Senior Security Engineer – Trusted Execution Environment (TEE / ARM TrustZone)

 

Role Overview

We are looking for a security engineer to design and implement security-critical components running inside Trusted Execution Environments (TEE) such as ARM TrustZone.

In this role, you will develop Trusted Applications (TA) responsible for protecting DRM keys, secure media pipelines, device integrity verification, and hardware-backed security features for mobile and media platforms.

You will work closely with platform, operating system, and hardware teams to build robust security solutions protecting high-value digital content and platform services.

Responsibilities

• Design and implement Trusted Applications (TA) running in ARM TrustZone / TEE environments
• Develop secure communication between Normal World and Secure World
• Implement secure key management and cryptographic operations inside TEE
• Build DRM and secure media protection systems
• Integrate TEE security services with Android or embedded platforms
• Implement secure storage mechanisms (RPMB, secure file systems)
• Design device attestation and hardware-backed security features
• Perform threat modeling and attack surface analysis
• Collaborate with OS, firmware, and hardware teams to integrate platform security features
• Investigate and mitigate attacks such as
  • Investigate and mitigate attacks such as tampering, reverse engineering, and runtime manipulation

Required Qualifications

• Strong programming experience in C/C++
• Experience developing software for Trusted Execution Environments (TEE) or ARM TrustZone
• Experience building Trusted Applications (TA) or secure platform services
• Knowledge of secure monitor calls (SMC) and world switching mechanisms
• Understanding of hardware root of trust, secure boot, and device attestation
• Experience with