What you'd actually do

Evaluate and address security vulnerabilities as they are detected, architecting and developing the resolution, as well as drafting the CVE and determining accurate CVSS scores

Design, develop, debug, verify and/or validate firmware/ BIOS, software and/or hardware

Participant in day-to-day firmware/Software development work

Provide consultation to internal and external customers regarding AMD features and programming requirements

Partner with Platform team to bring-up the BIOS and firmware during Embedded SOC bring-up.

Skills

Required

firmware security solutions
firmware attack points
security vulnerabilities
CVE/CVSS descriptions and scores
embedded firmware
pre-boot environment (eg: UEFI, CoreBoot)
vulnerability detection and mitigation
firmware/ BIOS, software and/or hardware development
BIOS and firmware bring-up
security threat modelling

Nice to have

server platforms
software engineering practices
DDR, SPI, eSPI, I2C, LPC, and PCIe
tight deadlines
security threat modelling
recent public industry security exploits
Excellent communications skills: verbal, written and interpersonal

WHAT YOU DO AT AMD CHANGES EVERYTHING

At AMD, our mission is to build great products that accelerate next-generation computing experiences—from AI and data centers, to PCs, gaming and embedded systems. Grounded in a culture of innovation and collaboration, we believe real progress comes from bold ideas, human ingenuity and a shared passion to create something extraordinary. When you join AMD, you’ll discover the real differentiator is our culture. We push the limits of innovation to solve the world’s most important challenges—striving for execution excellence, while being direct, humble, collaborative, and inclusive of diverse perspectives. Join us as we shape the future of AI and beyond. **Together, we advance your career. **

FIRMWARE SECURITY ENGINEER

THE ROLE:

AMD’s Server Firmware team is looking for an Engineer to architect, design, and integrate firmware security solutions for AMD server products. You will join a team of proven security focused architects and developers to help eliminate firmware attack points. You will be asked to evaluate and address security vulnerabilities as they are detected, architecting and developing the resolution, as well as drafting the CVE and determining accurate CVSS scores.

THE PERSON:

We are looking for a Firmware Developer with proven industry experience hardening firmware to prevent and address security vulnerabilities. The candidate will have industry experience defining threat models, evaluating attack surfaces, and assigning CVE/CVSS descriptions and scores. The engineer will have experience in embedded firmware and pre-boot environment (eg: UEFI, CoreBoot). Experience with industry common practices in vulnerability detection and mitigation is critical.

The engineer will engage as an active team player, provide leadership to developers, and always be ready to take on new challenges. The engineer will drive design reviews, firmware quality improvements, and architectural discussions.

KEY RESPONSIBILITIES:

Evaluate and address security vulnerabilities as they are detected, architecting and developing the resolution, as well as drafting the CVE and determining accurate CVSS scores
Design, develop, debug, verify and/or validate firmware/ BIOS, software and/or hardware
Participant in day-to-day firmware/Software development work
Provide consultation to internal and external customers regarding AMD features and programming requirements
Partner with Platform team to bring-up the BIOS and firmware during Embedded SOC bring-up.
Partner with HW and Silicon validation teams for verification of all embedded features in the Silicon IP.
Support the triage and debug of critical bugs from BIOS side that require multi-team interactions.
Prior years of experience and/or education within the semiconductor industry
Experience producing quality firmware
Proactively drive continuous improvement for post-silicon power and performance activities
Must be a self-starter, and able to independently drive tasks to completion

PREFERRED EXPERIENCE:

Experience working on server platforms.
Well versed in software engineering practices.
Experience with DDR, SPI, eSPI, I2C, LPC, and PCIe.
Ability to work independently under tight deadlines, responding to changing business and technical conditions with minimal direction.
7+ years BIOS/Firmware Development experience
3+ years of experience with security threat modelling.
An understanding of recent public industry security exploits.
Excellent communications skills: verbal, written and interpersonal.

ACADEMIC CREDENTIALS:

Bachelor’s or Master's degree in Computer or Electrical Engineering or equivalent

#LI-SK3

_Benefits offered are described: _AMD benefits at a glance.

AMD does not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services. AMD and its subsidiaries are equal opportunity, inclusive employers and will consider all applicants without regard to age, ancestry, color, marital status, medical condition, mental or physical disability, national origin, race, religion, political and/or third-party affiliation, sex, pregnancy, sexual orientation, gender identity, military or veteran status, or any other characteristic protected by law. We encourage applications from all qualified candidates and will accommodate applicants’ needs under the respective laws throughout all stages of the recruitment and selection process.

AMD may use Artificial Intelligence to help screen, assess or select applicants for this position. AMD’s “Responsible AI Policy” is available here.

_ _

This posting is for an existing vacancy.