Junior Software Security Analyst (m/f/d)

We are seeking a Security Vulnerability Analyst to support the analysis of embedded systems, focusing on identifying and understanding potential vulnerabilities at the hardware/software boundary.


You will work with experienced team members to analyze firmware and system components, learn how to identify security weaknesses, and contribute to improving the security of embedded products. This role is well suited for candidates with a strong foundation in embedded systems who want to build expertise in security.


We welcome:

  • early-career engineers with strong technical foundations

  • candidates with hands-on experience through academic, research, or personal projects

  • candidates interested in transitioning into embedded security


Your Responsibilities

  • Support vulnerability analysis of embedded software (bare-metal and RTOS-based systems)

  • Assist in analyzing boot flows and security-relevant components under guidance

  • Investigate potential weaknesses and contribute to root cause analysis

  • Support security certification and evaluation activities (e.g., PSA, SESIP)

  • Help analyze and track PSIRT reports

  • Learn and apply analysis tools and methodologies (e.g., static analysis, basic fuzzing, scripting)

  • Research known vulnerability patterns and emerging attack techniques

  • Collaborate with development teams to understand findings and proposed mitigations


Education & Qualifications

  • Degree in Electrical Engineering, Computer Science, Mathematics, or a related field, or equivalent practical experience

  • Strong academic or practical experience demonstrating hands-on technical skills (e.g., projects, open-source contributions, internships, research work)

  • Basic understanding of embedded systems and low-level programming concepts

  • Experience with C programming

  • Familiarity with ARM or RISC-V architectures is a plus

Nice to have:

  • Exposure to debugging or embedded development tools (e.g., GDB, IDEs, trace tools)

  • Basic understanding of operating systems or RTOS concepts

  • Awareness of common security concepts (e.g., memory safety, access control)

  • Interest in learning vulnerability research and secure system design


Your Profile

  • Strong curiosity and willingness to learn how systems behave under failure or attack conditions

  • Structured problem-solving approach and attention to detail

  • Ability to work independently on well-defined tasks while seeking guidance when needed

  • Clear communication skills and openness to feedback

  • Team-oriented mindset and eagerness to learn from experienced colleagues


Why Join Us

  • Opportunity to build expertise in embedded security and vulnerability analysis

  • Work on real-world, security-critical embedded systems

  • Learn from experienced engineers and security specialists

  • Gain hands-on experience with modern tools and methodologies

  • Contribute to improving the security of next-generation products

Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.

For applications in Gratkorn: NXP provides market competitive compensation according to the benchmarking of the electronic and semiconductor industry. Due to the Austrian Equal Treatment Act we are obligated to state the employment group of our applicable collective bargaining agreement (CBA) “Kollektivvertrag für Angestellte Gewerbe und Handwerk und in der Dienstleistung“, this position (fulltime) is graded in Employment Group IV. Your individual experiences and expectations will be considered in the application process. Moreover, we provide attractive benefits to our employees like home office, flexible working time, meal benefits and more.


More information about NXP in Austria...

#LI-a8a1