Nxp logo

Software Security Architect – Cyber Resilience Act (CRA) & Product Security (m/f/d)

Posted 7 days ago

OfficeGratkornSE

Join one of the world's largest industrial security organizations and help define the security foundations of products used by millions of people worldwide.

At NXP's Competence Center Crypto & Security (CC C&S), security is at the core of everything we do. Our experts drive innovation from advanced security research and architecture to deployment in automotive, industrial, IoT, mobile, and edge processing solutions.

We are looking for an experienced Software Security Architect to join our Software Security Architecture team and lead the strategic implementation of the European Cyber Resilience Act (CRA) across NXP's product portfolio.

This is a highly visible role that combines security architecture, regulatory leadership, threat analysis, and cross-functional influence. You will have the opportunity to shape how security is embedded into products throughout their entire lifecycle while working alongside recognized experts in product security and secure system design.

If you are passionate about secure embedded systems, product security, and driving industry-leading security practices, we would love to hear from you.

As a Software Security Architect, you will play a key role in ensuring that NXP's products meet future security expectations while maintaining the highest standards of security engineering.

You will:

  • Define and drive the Cyber Resilience Act (CRA) compliance strategy for NXP's MCU and MPU product portfolios within the Security Arcitecture team.

  • Influence security architecture decisions across multiple product lines and business units.

  • Translate regulatory requirements into actionable security controls, architecture principles, and engineering requirements.

  • Drive security-by-design methodologies across both legacy products and new product introductions (NPI).

  • Lead system-level threat modeling, attack surface analysis, and security risk assessments for complex embedded and semiconductor-based products.

  • Establish security requirements and ensure end-to-end traceability throughout the development lifecycle.

  • Support audit readiness through security evidence generation, compliance documentation, and risk management activities.

  • Collaborate with product architects, engineering teams, product management, compliance experts, and senior stakeholders worldwide.

  • Drive adoption of security best practices, frameworks, and standards across NXP's product portfolio.

You have:

  • Bachelor's, Master's, or PhD degree in Computer Science, Cybersecurity, Information Security, Software Engineering, Electrical Engineering, Computer Engineering, Embedded Systems, or a related technical field.

  • Strong experience in embedded systems security and software and/or hardware security architecture.

  • Proven expertise in threat modeling, secure system design, and security risk assessment.

  • Deep understanding of security technologies such as:

    • Secure Boot

    • Cryptography and Key Management

    • Firmware Protection

    • Device Identity and Root of Trust

    • Secure Update Mechanisms

  • Experience translating security requirements into practical technical architectures and implementations.

  • Strong analytical skills with a system-level view of security challenges.

  • Excellent stakeholder management and communication skills.

  • Ability to drive security initiatives across global and cross-functional teams.

Experience in one or more of the following areas is highly desirable:

  • Security architecture for embedded, IoT, automotive, or industrial systems.

  • Security certification frameworks such as:

    • PSA Certified

    • SESIP

    • Common Criteria

  • Product security regulations and compliance frameworks.

  • Cyber Resilience Act (CRA) implementation or preparation activities.

  • Secure development lifecycle (SDL) practices.

  • Security assessments, penetration testing, or vulnerability analysis.

  • Secure hardware/software co-design.

Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.

For applications in Gratkorn: NXP provides market competitive compensation according to the benchmarking of the electronic and semiconductor industry. Due to the Austrian Equal Treatment Act we are obligated to state the employment group of our applicable collective bargaining agreement (CBA) “Kollektivvertrag für Angestellte Gewerbe und Handwerk und in der Dienstleistung“, this position (fulltime) is graded in Employment Group V after 6 years. Your individual experiences and expectations will be considered in the application process. Moreover, we provide attractive benefits to our employees like home office, flexible working time, meal benefits and more.


More information about NXP in Austria...

#LI-a8a1
Job details
Workplace
Office
Location
Gratkorn
Experience
SE

We anticipate tomorrow’s needs—navigating a changing world by bringing together technology's brightest minds to build game-changing solutions that propel us forward. NXP Semiconductors N.V. (NASDAQ: NXPI) is the trusted partner for innovative solutions in the automotive, industrial & IoT, mobile, and communications infrastructure markets. NXP's "Brighter Together" approach combines leading-edge technology with pioneering people to develop system solutions that make the connected world better, safer, and more secure. The company has operations in more than 30 countries and posted revenue of $12.61 billion in 2024. Find out more at www.nxp.com. Career Development Opportunities : Bright Minds. Bright Futures. We believe that a key component to growing our business is to develop our people. To enable you to grow your career at NXP, we offer online and offline learning opportunities to help you develop some of your core and professional skills. Commitment At NXP. We recognize NXP is a powerful change agent as we continue to deliver innovative solutions that advance a more sustainable future. We remain steadfast in our commitment to sustainability and making measurable year-on-year progress. Also, we aim to create an inclusive work environment and we will not tolerate racism, discrimination or harassment of any kind. We have programs in place focused on diversity, inclusion and equality. Privacy Policy: https://www.nxp.com/company/about-nxp/privacy-policy-for-social-media-pages:PRIVACY-POLICY-SOCIAL-MEDIA

Employees
22501
Industry
Semiconductor Manufacturing
Headquarters
Eindhoven, Noord-Brabant
Founded
2006
Company location
High Tech Campus 60, Eindhoven, Noord-Brabant 5656 AG, NL
Specialties
Automotive, Industrial, Smart Home, Smart City, Communication Infrastructure, Mobile, Automotive Processors, Microcontrollers, Applications Processors, Analog, Security and Authentication, High Performance Mixed Signal, Sensors, RFID/NFC, Power Management, RF, Interfaces, Audio, and Wireless Connectivity

Key team members

Andrew Stewart

Andrew Stewart

Apply smarter with Jobr

Jobr aggregates jobs directly from company career portals — no middlemen. Our team applies on your behalf with AI-tailored resumes, reviewed by a human before submission.

Direct from company career pages
AI-personalised cover letters
Human review before every submit
Application tracking & follow-ups