Security Architect, Hardware jobs in United States
cer-icon
Apply on Employer Site
company-logo

Cloudflare · 17 hours ago

Security Architect, Hardware

positionAustin, TX
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
date12+ years exp

Cloudflare is on a mission to help build a better Internet, offering protection and acceleration for Internet applications. They are seeking a Security Architect specializing in hardware security to provide guidance on security requirements, assist with documentation, and collaborate with teams to implement secure hardware solutions.

AnalyticsEnterprise SoftwareSecurityWeb Hosting
check
H1B Sponsor Likelynote

Responsibilities

Provide input on security requirements for new infrastructure and engineering initiatives
Assist with documentation and maintenance of the corporate security architecture blueprints
Your focus will be on hardware security ,secure boot processes, side-channel attack mitigation, BIOS level security requirements and cryptographic isolation within devices, etc
Partner with hardware and firmware teams to provide security guidance for the design and implementation of security features such as Hardware Root of Trust (RoT), Secure Boot (e.g., UEFI configuration), and hardware-based cryptographic accelerators
Define advanced memory protection strategies
Collaborate with the Security Detections and Monitoring team to develop telemetry and alerts for detecting unauthorized hardware changes, firmware tampering, or suspicious BIOS/UEFI configuration modifications
Define and enforce secure configuration standards for BIOS/UEFI settings, Trusted Platform Modules (TPM), and physical port management (e.g., USB, JTAG, UART) to prevent unauthorized access
Coordinate 3rd party hardware and firmware penetration tests, review technical findings, and translate complex vulnerabilities into actionable security requirements for engineering teams
Design secure solutions for complex infrastructure problems, such as implementing Zero Trust principles at the hardware level and securing high-performance computing or edge-device integrations
Perform regular audits of hardware and firmware environments to identify "configuration drift" where systems have deviated from established security baselines or approved firmware versions
Evaluate vendor updates, microcode patches, and vulnerability data (CVEs) to make prioritized risk-based recommendations for patching critical hardware flaws
Act as the security liaison between infrastructure, firmware, and other engineering teams to embed "secure-by-design" principles into the early stages of the hardware procurement and development lifecycle
Conduct detailed threat modeling sessions specifically focused on physical attack vectors, side-channel attacks, and supply chain integrity risks
Provide deep technical expertise during hardware-related security incidents, assisting with forensic analysis of compromised firmware or physical tampering detected by monitoring systems
Develop hardware-specific security policies and reference architectures that comply with international standards such as NIST SP 800-193 (Platform Firmware Resiliency)

Qualification

Hardware Security ArchitectureSecure Boot ProcessesCryptographic IsolationVulnerability AssessmentPenetration TestingSecurity Standards KnowledgeThreat ModelingForensic AnalysisPolicy DevelopmentTechnical ExpertiseCommunication SkillsCollaboration Skills

Required

Either advanced studies in Cybersecurity, Computer Science, Information Systems, or similar
Excellent written and verbal communication skills, including the ability to effectively collaborate with technical and senior business staff and management
12+ years in a product or embedded security role, with 7+ years as a Hardware Security Architect
Expertise in Medium to high-level security concepts, including secure boot, memory protection, and secure element implementation
Proficiency with hardware description languages and hands-on experience with hardware/firmware vulnerability assessment and penetration testing
Strong knowledge of security standards relevant to device manufacturing and supply chain

Preferred

Certifications: CSSLP or relevant vendor-specific hardware security certifications
Experience with open-source hardware architectures
Background in securing IoT, industrial control systems (ICS), or consumer electronics devices

Company

Cloudflare

twittertwittertwitter
Glassdoor3.3
company-logo
Cloudflare is a web performance and security company that provides online services to protect and accelerate websites online.
dateFounded in 2009
location
San Francisco, California, USA
people-size1001-5000 employees
web-link
http://www.cloudflare.com

H1B Sponsorship

Cloudflare has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (117)
2024 (115)
2023 (66)
2022 (98)
2021 (83)
2020 (37)

Funding

Current Stage
Public Company
Total Funding
$2.08B
Key Investors
Franklin TempletonFidelityUnion Square Ventures
2025-06-13Post Ipo Debt· $1.75B
2019-09-12IPO
2019-03-12Series E· $150M

Leadership Team

leader-logo
Matthew Prince
CEO & Co-Founder
linkedin
leader-logo
Lee Holloway
Co-Founder & Lead Engineer
linkedin

Recent News

Mercury News
Andreessen Horowitz makes a $3 billion bet that there’s no AI bubble
2026-01-20
BusinessCloud
$65bn Cloudflare makes swoop for London-based AI business
2026-01-20
Boston Herald
The exuberance for all things AI
2026-01-20
Company data provided by crunchbase