Sr. Product Security Engineer

You know the moment. It’s the first notes of that song you love, the intro to your favorite movie, or simply the sound of someone you love saying “hello.” It’s in these moments that sound matters most.

At Bose, we believe sound is the most powerful force on earth. We’ve dedicated ourselves to improving it for nearly 60 years. And we’re passionate down to our bones about making whatever you’re listening to a little more magical.

The Information Technology team at Bose exists to deliver valuable and reliable business and technology solutions with an innovative, engaged, and collaborative team focused on contributing to our corporate vision.

Job Description

About Bose

You know the moment. It's the first notes of that song you love, the intro to your favorite movie, or simply the sound of someone you love saying "hello". It's in these moments that sound matters most. At Bose, we believe sound is the most powerful force on earth. We've dedicated ourselves to improving it for nearly 60 years. And we're passionate down to our bones about making whatever you're listening to a little more magical.

About the Team

The Bose Product Security team is looking for a talented and motivated Sr. Product Security Engineer to join its rapidly expanding team. This individual will be focused on penetration and application security testing concentrating on pre-release products, post-release updates, and 3rd party products. In addition, they will participate in the identification, evaluation, and selection of security tools and technologies to continually enhance Bose’s product security.

This is a phenomenal opportunity to join a growing team that will be instrumental in protecting not just products, but Bose’s most valuable asset…its customers.

About the Role

Primary Duties and Responsibilities:

Conduct SAST, SCA, DAST and manual code reviews to test and verify the strengths and weaknesses of a variety of products across multiple environments, using both commercial and open-source security tools.

Collaborate with product development teams to integrate security considerations into the productdesign lifecycle from the initial stages.

Perform threat modeling on embedded systems and utilize the findings to influence and guide security-enhanced design decisions.

Possess knowledge of techniques for obfuscating data within embedded devices to enhance securitymeasures.

Collaborate with chip manufacturers, such as Qualcomm, to identify and integrate available securityfeatures within hardware designs.

Develop secure standard baseline configurations for similar embedded devices.

Create and maintain enterprise-level technical security documentation, ensuring robust and up-to-date security practices.

Proficient in securing communication between embedded devices and cloud services, ensuring robust protection for data in transit and at rest.

Familiar with implementing security workflows on embedded devices, including secure boot processes, to enhance device integrity and startup security.

About You

Qualifications:

7+ years of working in a highly technical environment with experience in security testing, source code analysis and creating technical documents.

Knowledge of C and/or Python

CISSP, OSCP, OSWE or equivalent certification.

Experience with discovering, utilizing, and writing exploits.

Knowledge of containerization (i.e., Docker, Kubernetes)

Team player with the ability to both articulate thoughts and opinions but also listen and compromise.

Ability to champion innovation through change

Independent, self-managed, and motivated with high integrity.

Our goal is to create an atmosphere where every candidate feels supported and empowered in the interviewing process. Diversity and inclusion are integral to our success, and we believe that providing reasonable accommodation is not only a legal obligation but also a fundamental aspect of our commitment to being an employer of choice. We recognize that individuals may have different needs and requirements based on their abilities, and we provide reasonable accommodations to ensure ideal conditions are met during the application process.

If you believe you need a reasonable accommodation, please send a note to

#LI-JW1

Bose is an equal opportunity employer that is committed to inclusion and diversity. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status, or any other legally protected characteristics. For additional information, please review: (1) the EEO is the Law Poster ( and (2) its Supplements ( Please note, the company's pay transparency is available at Bose is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the application or employment process, please send an e-mail to and let us know the nature of your request and your contact information.

Our goal is to create an atmosphere where every candidate feels supported and empowered in the interviewing process. Diversity and inclusion are integral to our success, and we believe that providing reasonable accommodation is not only a legal obligation but also a fundamental aspect of our commitment to being an employer of choice. We recognize that individuals may have different needs and requirements based on their abilities, and we provide reasonable accommodations to ensure ideal conditions are met during the application process.

If you believe you need a reasonable accommodation, please send a note to

R26511