Senior Embedded Linux Security Engineer

Our client is a privately held medical technology company developing and commercializing a non‑invasive sonic beam therapy platform based on the science of histotripsy. The company’s mission is to bring a fundamentally new way to treat tumors and other unwanted tissue without surgery, using focused sound energy rather than heat, radiation, or incisions. They are co‑headquartered between Ann Arbor, Michigan and Minneapolis

We are looking for Senior Engineer for NVIDIA Linux (Ubuntu) medical device hardening and OTA updates who is responsible for designing, implementing, and maintaining a secure, reliable Linux platform (Ubuntu‑based) running on NVIDIA hardware as part of a regulated medical device system.

This role focuses on system hardening, secure update mechanisms, and lifecycle management, ensuring that devices in the field remain secure, compliant, and safely updatable throughout their operational lifetime.

• Design and implement Linux (Ubuntu) OS hardening for NVIDIA‑based platforms (e.g., Jetson), aligned with medical device security and safety requirements.
• Own and maintain the Over‑The‑Air (OTA) update strategy, including secure boot, signed images, rollback, and failure recovery.
• Develop and manage secure OS, firmware, and application update pipelines for deployed devices.
• Ensure end‑to‑end security of the device lifecycle: boot chain, OS, kernel, drivers, containers, and applications.
• Integrate and manage secure boot, disk encryption, key management, and certificate handling.
• Work closely with regulatory, quality, and safety teams to support compliance (e.g., IEC 62304, ISO 14971, FDA cybersecurity guidance).
• Perform threat modeling, vulnerability assessments, and patch management.
• Support manufacturing and provisioning flows, including device identity and initial key injection.
• Collaborate with cloud/backend teams on OTA orchestration and fleet management.
• Troubleshoot and resolve low‑level system, update, and field‑deployment issues.

• Strong experience with Embedded Linux (Ubuntu) on NVIDIA platforms.
• Hands‑on experience designing and operating secure OTA update systems.
• Deep understanding of secure boot, cryptography, certificates, and key management.

• Proven background in Linux system hardening (kernel config, services, file system, networking).
• Experience with Yocto or Ubuntu‑based embedded distributions (advantageous).
• Familiarity with containerization (Docker, OCI) in embedded systems.
• Solid debugging skills across boot loader, kernel, and userspace.
• Experience working in regulated environments, preferably medical devices.
• Experience with NVIDIA Jetson BSPs, CUDA‑enabled systems, or GPU‑accelerated platforms.
• Knowledge of A/B partitioning, atomic updates, and rollback mechanisms.
• Experience with device fleet management platforms.
• Exposure to cloud‑based OTA orchestration and CI/CD pipelines.

At Intellias, where technology takes center stage, people always come before processes. By creating a comfortable atmosphere in our team, we empower individuals to unlock their true potential and achieve extraordinary results. That’s why we offer a range of benefits that support your well‑being and charge your professional growth.

We are committed to fostering equity, diversity, and inclusion as an equal opportunity employer. All applicants will be considered for employment without discrimination based on race, color, religion, age, gender, nationality, disability, sexual orientation, gender identity or expression, veteran status, or any other characteristic protected by applicable law.

We welcome and celebrate the uniqueness of every individual. Join Intellias for a career where your perspectives and contributions are vital to our shared success.