Senior Android Platform Engineer

Senior Android Platform Engineer

Sterling, VA (Hybrid)

Full-Time

U.S. Citizenship Required

What You'll Do

• Maintain and extend a custom AOSP-derived platform build, including device trees, vendor partitions, HAL customizations, and system image signing

• Design and operate reproducible build pipelines with CI/CD automation and secure release key management

• Build an end-to-end OTA update system engineered for reliability in degraded environments - including phased rollout, rollback, and fault-tolerant installation

• Build, patch, and maintain custom Linux kernel images for the target platform, including kernel module development and upstream security patch integration

• Own the secure boot chain: AVB key infrastructure, bootloader security, SELinux policy authoring, and code signing with proper key lifecycle management

• Implement encryption, remote wipe, tamper detection, and rollback protection appropriate for high-assurance environments

• Evaluate and integrate cryptographic modules aligned with U.S. government cybersecurity frameworks and standards

• Architect device management strategy - enrollment, provisioning, policy enforcement, health monitoring, and compliance reporting across the fleet

Required Qualifications

• 7+ years software engineering experience, with 4+ years focused on Android platform and system-level development (not application development)

• Experience building, modifying, and flashing custom Android system images from AOSP or comparable open-source base

• Hands-on experience with Android Verified Boot, bootloader security, and the secure boot chain

• Linux kernel development: building from source, module development, devicetree, debugging

• Familiarity with Android OTA internals: update_engine, A/B partitioning, payload generation, boot control HAL

• Strong security engineering fundamentals: PKI, code signing, chain of trust, FDE/FBE, key management

• Proficiency in C/C++, Python, and Shell; working knowledge of Java/Kotlin for framework level modifications

• U.S. citizenship required Preferred Qualifications

• Experience with FIPS 140-2/3 cryptographic module integration

• Familiarity with U.S. government and regulated environment security frameworks (NIST 800 53 or equivalent)

• Experience managing device fleets at scale in operational environments

• Experience with Android Enterprise device owner and fully managed device APIs

• Contributions to AOSP or open-source Android platform projects

• Experience designing update and delivery systems for intermittent or degraded connectivity

• HSM-backed signing infrastructure experience