Staff TLM, Security Engineering (Cybersecurity)

TL;DR

Staff TLM, Security Engineering (Cybersecurity): Building and leading security programs for robots operating in the real world with an accent on device/firmware security, cloud infrastructure, and supply chain protections. Focus on embedding security into product lifecycle, driving vulnerability management, and incident response for high-risk embedded and distributed systems.

Austin, Texas, United States

Company

Diligent builds helpful robots that operate safely in the real world, moving fast with pragmatic engineering for high-risk systems.

What you will do

• Lead as TLM: set technical direction, own deliverables, and contribute hands-on with design, architecture, code, and reviews.
• Build security program: define roadmap for device, firmware, cloud, and service security, prioritizing highest business risks.
• Secure product lifecycle: conduct threat modeling, secure design/architecture reviews, coding practices, and verification/testing.
• Drive device/firmware security: implement secure boot, hardware root of trust, crypto/PKI, OTA updates, device identity, secrets management.
• Own cloud/infra security: secure backend services, CI/CD, IaC, IAM, secrets, logging/monitoring, incident detection/response.
• Lead vulnerability management, incident response/forensics, and cross-functional partnerships with product, firmware, SRE, QA, supply-chain teams.
• Mentor team: hire, coach, run 1:1s, career plans, foster ownership and improvement.

Requirements

• 8+ years in security engineering with impacts across product/infra security.
• 3+ years leading teams or in TLM/tech-lead + manager role (hands-on + people leadership).
• Hands-on skills in secure firmware/embedded/device security and cloud/backend; code in C/C++, Python, Go or similar.
• Deep knowledge of cryptography, PKI, secure boot, OTA, device identity, secrets management.
• Experience in vulnerability management, threat modeling, incident response for distributed systems.
• Securing CI/CD, IaC (Terraform/CloudFormation), cloud platforms (AWS/GCP/Azure).
• Excellent technical communication; strong mentoring skills.
• 3–5+ years managing complex Enterprise Network Environments; Palo Alto firewalls; wireless network design/maintenance/troubleshooting; leadership in projects/mentoring.

Nice to have

• Hardware/Platform: Ubiquiti/UniFi, Cradlepoint routers, NetCloud Manager.
• Network Tools: Ekahau WiFi Survey, RADIUS, DNS, MDM.
• Cellular: LTE/5G RF, LTE failover.
• Systems: Linux proficiency.
• Certifications: PCNSA/PCNSE, CCNA/CCNP or equivalent.
• High-growth startup experience.