Lead Embedded Software Engineer (m/f/d)

Senior Embedded Software Engineer, Amazon Leo Digital RF Systems
Job ID: 3130773 – Amazon Kuiper Manufacturing Enterprises LLC
Amazon Leo is Amazon’s low Earth orbit satellite network. Our mission is to deliver fast, reliable internet connectivity to customers beyond the reach of existing networks. From individual households to schools, hospitals, businesses, and government agencies, Amazon Leo will serve people and organizations operating in locations without reliable connectivity.
Join our mission to revolutionize space technology by developing secure, mission‑critical software that powers our satellite constellation. Your work will directly enable communications, autonomous operations, and reliable performance for satellites serving customers worldwide—while ensuring robust security from the moment they launch until their planned de‑orbit.
We’re seeking an experienced embedded software engineer with strong security expertise to architect and develop mission‑critical, security‑hardened software for our satellite systems. You’ll work at the intersection of hardware, software, and cybersecurity, creating firmware that not only controls satellite operations but also protects against evolving threats in the space domain.
Export Control Requirement
Due to applicable export control laws and regulations, candidates must be a U.Lead secure software development for critical modules including ASIC firmware, commanding systems, telemetry processing, power control, hardware interfaces, and autonomous capabilities, implementing security‑by‑design principles throughout the satellite’s operational lifetime.
Drive security architecture and threat modeling by identifying potential vulnerabilities, conducting security reviews, and designing defensive measures to protect satellite systems from cyber threats.
Design and implement robust, security‑hardened software and firmware in Linux and real‑time operating system (RTOS) environments, ensuring high reliability and security under resource constraints.
Conduct and support penetration testing to validate security controls, identify weaknesses, and implement remediation strategies for embedded systems.
Build secure hardware interfaces by writing software that communicates with devices and electronics using protocols including I2C, I3C, SPI, UART, USB, JTAG, and Ethernet, with appropriate security controls and authentication mechanisms.
Champion security and reliability by following best practices in secure embedded software development, including secure coding standards, code reviews, and security testing to ensure our systems meet the demanding requirements of space operations.
Optimize for secure production by partnering with test engineers to integrate security validation into manufacturing and test environments.
Your code will operate in space, enabling critical communications and services while protecting vital infrastructure.
Work with cutting‑edge technology at the intersection of highly sophisticated ASIC/SOC, hardware, software, security, and space systems.
We value creative problem‑solving and encourage new approaches to complex security and engineering challenges.
7+ years of non‑internship professional software development experience.

• 5+ years of programming with at least one software programming language experience.
• Experience as a mentor, tech lead or leading an engineering team.
• Knowledge of programming languages such as C/C++, Python, Java or Perl.
• 7+ years of professional software engineering experience, with significant contributions to system design and architecture of complex systems (including architecture patterns, reliability, scaling, and security considerations).
• Deep expertise in secure embedded firmware development for bare‑metal or RTOS‑based systems, with proven ability to meet real‑time low‑power, reliability, and security requirements under hardware resource constraints.
• Experience with debugging tools such as GDB for testing code on FPGA or prototype chips.
• Experience with security‑aware software design, including threat modeling, security reviews, and vulnerability assessment.
• Practical knowledge of penetration testing methodologies and tools for embedded systems.

Practical experience using cryptography libraries (mbedTLS, OpenSSL, PKCS11) in secure applications, including key management and secure storage.
Common Criteria, NIST guidelines, secure coding standards).
Knowledge of telecommunications or data communications systems security (routers and switches).