1

Embedded Security Engineer Jobs in Georgia (NOW HIRING)

Job Purpose The Application Security Engineer is responsible for strengthening the security of our ... Experience securing embedded systems and mobile applications. Reasoning Ability Problem management ...

Senior Embedded Engineer

Atlanta, GA · On-site

$140K - $150K/yr

Join Our Team as a Senior Embedded Engineer Company: Coreforce Location: Atlanta (Hybrid) Job Type ... Familiarity with security/privacy and evidentiary integrity requirements for evidence capture ...

New

Senior Embedded Engineer

Atlanta, GA · Hybrid

$119K - $156K/yr

Join Our Team as a Senior Embedded Engineer Company: Coreforce Location: Atlanta (Hybrid) Job Type ... Familiarity with security/privacy and evidentiary integrity requirements for evidence capture ...

New

DevSecOps Engineer Momnt is an expanding financial technology company specialising in embedded ... You'll own key parts of our infrastructure security posture, cloud environments, CI/CD security ...

next page

Showing results 1-20

Embedded Security Engineer information

See Georgia salary details

$52.8K

$115.9K

$162.1K

How much do embedded security engineer jobs pay per year?

As of Jul 16, 2026, the average yearly pay for embedded security engineer in Georgia is $115,911.00, according to ZipRecruiter salary data. Most workers in this role earn between $94,100.00 and $138,100.00 per year, depending on experience, location, and employer.

What is the difference between Embedded Security Engineer vs Firmware Security Engineer?

AspectEmbedded Security EngineerFirmware Security Engineer
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CISSP, CEH
Work EnvironmentEmbedded systems, IoT devices, hardwareFirmware development, embedded systems, hardware
Industry UsageConsumer electronics, automotive, aerospaceConsumer electronics, IoT, industrial equipment

Both roles focus on security within embedded systems, often requiring similar certifications. The Embedded Security Engineer typically works on securing hardware and embedded platforms, while the Firmware Security Engineer specializes in securing firmware code. Their work environments overlap, but the Embedded Security Engineer may have a broader scope including hardware security, whereas the Firmware Security Engineer concentrates on firmware vulnerabilities and updates.

What is an Embedded Security Engineer?

An Embedded Security Engineer is a professional responsible for designing, implementing, and maintaining security features in embedded systems—specialized computing systems that are part of larger devices, such as cars, medical devices, or IoT gadgets. Their main goal is to protect these systems from cyber threats by developing secure firmware, performing vulnerability assessments, and integrating encryption or authentication mechanisms. They work closely with hardware and software teams to ensure security is built into the product from the ground up. As embedded devices become more prevalent, the role of Embedded Security Engineers is becoming increasingly important to prevent attacks that could compromise safety, data, or functionality.

What are some common challenges faced by Embedded Security Engineers when integrating security features into resource-constrained devices?

Embedded Security Engineers often face the challenge of implementing robust security measures within devices that have limited processing power, memory, and energy resources. Balancing security requirements with these constraints requires careful selection of lightweight cryptographic algorithms and efficient coding practices. Additionally, ensuring secure firmware updates and protecting against physical tampering are ongoing concerns. Collaboration with hardware engineers and firmware developers is crucial to design solutions that uphold security without compromising device performance.

What are the key skills and qualifications needed to thrive as an Embedded Security Engineer, and why are they important?

To thrive as an Embedded Security Engineer, you need expertise in embedded systems, cryptography, secure coding practices, and a relevant degree in computer science, electrical engineering, or a related field. Familiarity with tools such as static code analyzers, debuggers, hardware security modules (HSMs), and certifications like CISSP or CEH are commonly required. Strong problem-solving abilities, attention to detail, and effective communication set outstanding candidates apart. These skills and qualifications are crucial for protecting devices against cyber threats, ensuring system integrity, and enabling secure product development in increasingly connected environments.
What job categories do people searching Embedded Security Engineer jobs in Georgia look for? The top searched job categories for Embedded Security Engineer jobs in Georgia are:
Infographic showing various Embedded Security Engineer job openings in Georgia as of July 2026, with employment types broken down into 1% Internship, 88% Full Time, 7% Part Time, 1% Temporary, and 3% Contract. Highlights an 85% Physical, 4% Hybrid, and 11% Remote job distribution, with an average salary of $115,911 per year, or $55.7 per hour.
Lead Application Security Engineer

Lead Application Security Engineer

Carter's, Inc.

Atlanta, GA • On-site

$56.50 - $75.50/hr

Full-time

Posted 16 days ago


Carter's rating

5.9

Company rating: 5.9 out of 10

Based on 195 frontline employees who took The Breakroom Quiz

55th of 104 rated fashion retailers


Job description

Serving the needs of all families with young children, Carter's Inc. is the largest North American apparel retailer exclusively for babies and young children, encompassing Carter's, OshKosh B'gosh, Skip*Hop and Little Planet brands. Meaningful work, constant learning, genuine people, and a community guided by core values that promote inclusion and innovation is in everything we do. There are many reasons to build your career at Carter's.
How you'll make an impact:
The Lead Security Engineer - Application Security is a senior technical leader within the IT Security team, reporting to the Sr. Director, IT Security. This role serves as the primary architect and subject matter expert for application security across the enterprise, owning the AppSec program strategy, standards, and tooling roadmap. Working autonomously and with broad organizational influence, the Lead exercises expert-level judgment to define how security is built into software from the ground up. A critical distinction of this role is hands-on experience with artificial intelligence: the Lead is expected to build, secure, and govern AI-powered capabilities as they become embedded in Carter's applications and infrastructure. The Lead acts as a force multiplier - elevating the security posture of every engineering team they engage with and translating complex risk into clear, actionable direction for both technical and business stakeholders.
Key Responsibilities
Depending on the needs of the department, the duties of this role could include:
  • Application security, architecture & standards (25%)
    • Defining and owning the enterprise application security architecture, standards, and secure-by-default patterns
    • Establishing and maintaining AppSec tooling strategy, evaluating vendors, and driving adoption across engineering teams
    • Leading threat modeling sessions for critical applications and new product features
    • Serving as the final technical authority on AppSec decisions, including security design reviews and architecture signoffs
  • Secure code review, API security & advanced testing (25%)
    • Conducting and directing advanced secure code reviews, SAST/DAST assessments, and manual penetration testing across web, mobile, and API surfaces
    • Owning API security standards including REST and GraphQL, enforcing OWASP API Top 10 controls and authentication/authorization design patterns
    • Driving vulnerability triage, risk prioritization, and remediation accountability across development teams at scale
  • DevSecOps engineering & platform ownership (20%)
    • Owning the DevSecOps toolchain: designing, deploying, and maturing security gates within CI/CD pipelines enterprise-wide
    • Acting as the primary security partner to engineering leadership, embedding security into system design, SDLC processes, and platform decisions
    • Driving continuous improvement of AppSec metrics, dashboards, and KPIs to demonstrate program maturity and risk reduction
  • AI security - build, secure & govern (20%)
    • Hands-on building and deploying AI-powered security tooling and automation (e.g., AI-assisted code review, threat detection, or vulnerability triage)
    • Securing AI/ML integrations and connectors: assessing prompt injection, data leakage, model supply chain, and third-party AI service risks
    • Developing and enforcing AI governance policies: defining acceptable use, security review gates, and risk acceptance criteria for AI adoption
  • Risk governance, compliance & cross-functional leadership (10%)
    • Representing the IT Security team in architecture reviews, cross-functional planning, and executive risk reporting
    • Owning security policy and standards documentation relevant to application security, AI use, and API governance
    • Leading AppSec representation in PCI-DSS, NIST, and OWASP compliance audits and evidence collection

Travel Requirements
Open-to-travel between various Carter's offices as needed
We'd Love to hear from you if: (Requirements section)
Must have:
  • 5+ years of application security, software engineering, or secure code review experience
  • Strong proficiency in one or more languages (e.g., Python, Java, JavaScript, Go) with ability to perform in-depth code review and threat modeling.
  • Experience with SAST/DAST tooling (e.g., Snyk, SonarQube, Semgrep, Checkmarx, Burp Suite, OWASP ZAP) and ownership of AppSec program design.
  • Proven communication and presentation skill set abilities with multilevel stakeholders
  • Ability to meet deadlines and work with management across various disciplines
  • Proven collaborative experience with cross functional teams
  • Ability to perform on-call duties during off-hours and holidays
  • An adaptable and flexible attitude towards changing business needs

Preferred skills and experience:
  • Bachelor's degree in computer science or related field
  • Demonstrated experience leading or conducting red team, penetration testing, or adversarial simulation exercises.
  • Experience designing and scaling security observability pipelines, including log analysis and application-layer telemetry.
  • Working knowledge of PCI-DSS, NIST, OWASP, and other regulatory frameworks; experience representing security in audit and compliance reviews.
  • Proven experience securing cloud-native or hybrid-cloud application environments (AWS, Azure, or GCP).
  • Hands-on experience building, deploying, or integrating AI/ML-powered tools, combined with the ability to assess and govern their security posture (prompt injection, data leakage, model supply chain risks).
  • Proven ability to define and enforce security standards across engineering organizations; prior experience owning a security capability or domain.
  • Security+, ISC2 CC, CompTIA A+, CompTIA Network+, SSCP, CCT, GWEB, CSSLP, CEH, or OSCP certifications

Carters is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, genetics, disability, age, veteran status, or any other status protected by federal, state, or local law.

What Carter's employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom