À propos
privately held medical technology company
developing and commercializing a
non-invasive sonic beam therapy platform
based on the science of
histotripsy . The company’s mission is to bring a fundamentally new way to treat tumors and other unwanted tissue without surgery, using focused sound energy rather than heat, radiation, or incisions. They are co headquartered between Ann Arbor Michigan and Minneapolis We are looking for
Senior Engineer for NVIDIA Linux (Ubuntu) medical device hardening and OTA updates
who is responsible for designing, implementing, and maintaining a secure, reliable Linux platform (Ubuntu-based) running on NVIDIA hardware as part of a regulated medical device system. This role focuses on
system hardening, secure update mechanisms, and lifecycle management , ensuring that devices in the field remain secure, compliant, and safely updatable throughout their operational lifetime. Requirements
Strong experience with
Embedded Linux (Ubuntu)
on NVIDIA platforms. Hands‑on experience designing and operating
secure OTA update systems . Deep understanding of
secure boot, cryptography, certificates, and key management . Will be a plus
Proven background in
Linux system hardening
(kernel config, services, filesystem, networking). Experience with
Yocto or Ubuntu-based embedded distributions
(advantageous). Familiarity with
containerization (Docker, OCI)
in embedded systems. Solid debugging skills across
bootloader, kernel, and userspace . Experience working in
regulated environments , preferably medical devices. Experience with
NVIDIA Jetson BSPs , CUDA-enabled systems, or GPU-accelerated platforms. Knowledge of
A/B partitioning, atomic updates, and rollback mechanisms . Experience with
device fleet management platforms . Exposure to
cloud-based OTA orchestration
and CI/CD pipelines. Responsibilities
Design and implement
Linux (Ubuntu) OS hardening
for NVIDIA-based platforms (e.g., Jetson), aligned with medical device security and safety requirements. Own and maintain the
Over‑The‑Air (OTA) update strategy , including secure boot, signed images, rollback, and failure recovery. Develop and manage
secure OS, firmware, and application update pipelines
for deployed devices. Ensure
end‑to‑end security
of the device lifecycle: boot chain, OS, kernel, drivers, containers, and applications. Integrate and manage
secure boot, disk encryption, key management, and certificate handling . Work closely with
regulatory, quality, and safety teams
to support compliance (e.g., IEC 62304, ISO 14971, FDA cybersecurity guidance). Perform
threat modeling, vulnerability assessments, and patch management . Support manufacturing and provisioning flows, including device identity and initial key injection. Collaborate with cloud/backend teams on OTA orchestration and fleet management. Troubleshoot and resolve low-level system, update, and field-deployment issues.
#J-18808-Ljbffr
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.