Senior Linux Platform Engineer

Job summary

The Senior Linux Platform Software Engineer will join the platform team for a robotic-assisted bronchoscopy navigation and biopsy planning software product. This role involves owning the Linux operating system and platform-layer software for a medical image-processing system running a custom Yocto-based Linux distribution. The engineer will be responsible for OS bring-up, secure boot, remote software update infrastructure, platform security hardening, and hardware bring-up for new laptop models.

Benefits

Qualifications

• Bachelor’s degree with 6+ years of industry experience, or Master’s degree with 4+ years of industry experience, in Computer Science, Computer Engineering, or a related engineering discipline.
• 4+ years of embedded Linux software engineering, with direct OS-layer development experience.
• Deep expertise in Yocto Project / OpenEmbedded: layer authoring (meta-*), Bitbake recipes, image manifests, and SDK toolchain configuration.
• Proficiency in Bash shell scripting and at least one system-level language (C or C++ preferred) for platform daemons, service utilities, and installer scripts.
• Experience designing and implementing field software update mechanisms: package validation, partition management, rollback, and error recovery.
• Practical knowledge of Linux system security hardening: file permissions, user/group privilege controls, credential management, kernel module configuration, and security scanning tools.
• Experience managing hardware lifecycle transitions, including end-of-life risk mitigation, replacement platform qualification, and software compatibility maintenance across hardware generations.
• Hardware bring-up experience on x86 laptop or embedded platforms: driver configuration, peripheral debugging (USB, HID/trackpad, display adapters, storage).
• Familiarity with D-Bus IPC, systemd service management, and Linux log infrastructure.
• Proficiency with Git, Jira, Bitbucket/GitHub, and Jenkins (or equivalent CI/CD toolchain).
• Proficiency in Python for build/test automation, scripting, and tooling in embedded Linux workflows.
• Experience with commercial laptop BIOS tools and BIOS firmware upgrade automation.
• Strong knowledge of Linux secure boot: UEFI Secure Boot, GRUB2 configuration and signing, TPM 2.0, PCR policy binding, and BIOS firmware interaction.
• Familiarity with NVIDIA CUDA integration in Yocto-based Linux (driver packaging, CUDA version management, multi-GPU laptop bring-up).
• Working knowledge of Linux disk and partition management, including partition table schemes, block-level encryption, and bootloader partition layouts.
• Familiarity with Linux networking stack configuration, including wireless networking and firewall management.
• Background in cryptographic key management: PKI, signing infrastructure, and secure key rotation workflows.
• Experience integrating endpoint security agents (EDR, antivirus) in embedded Linux environments.
• Prior experience with OTA update frameworks for Linux-based medical or industrial devices.
• Knowledge of medical device software development lifecycle standards (IEC 62304, FDA software guidance).

Responsibilities

• Own and maintain the Yocto-based Linux OS for the procedure planning laptop, including custom BSP and application layer authoring, OS version upgrades across multiple Yocto LTS releases, kernel configuration, and Bitbake recipe maintenance.
• Maintain, validate, and harden the full secure boot chain (UEFI Secure Boot, GRUB2, TPM 2.0, bootloader key management) across multiple commercial laptop platforms.
• Sustain and enhance remote software upgrade capabilities and on-site service upgrade workflows, including software package creation and validation, update orchestration support, BIOS firmware upgrade maintenance, partition management, rollback mechanisms, and error recovery.
• Manage hardware lifecycle across multiple commercial laptop platforms: conduct bring-up for new models (driver configuration, secure boot enrollment, BIOS management, GPU integration) and lead end-of-life (EOL) transition planning and replacement hardware qualification.
• Perform security vulnerability remediation: identify and fix OS-level CVEs, integrate and validate endpoint security tooling, implement OS-level account hardening, and produce required documentation.
• Produce and maintain engineering design documents, software change analysis artifacts, and technical documentation per medical device quality procedures.
• Debug and resolve platform-level field issues including unexpected reboots, TPM lockouts, boot failures, login screen freezes, and USB-related defects.
• Support software application teams with platform-layer APIs (D-Bus services, power monitoring, log rotation, hardware interface utilities) as needed.

Skills

Degrees

Languages

Work schedule

Relocation