Senior Linux Software and Security Engineer - eLxr

YOUR ROLE

As a Senior Linux Software and Security Engineer on the eLxr team, you will design, develop, and maintain security related components across the distribution while also contributing to packaging, patching, and security vulnerability (CVE) remediation. This role combines hands-on development with distribution engineering responsibilities, including upstream patch contributions to Debian, package updates, and secure build workflow support.

HOW YOU WILL CONTRIBUTE

•

Develop and maintain software components used within the eLxr distribution (C/C++, Python, or similar languages).

•

Create, update, and optimize Debian packages.

•

Contribute fixes and patches upstream to Debian when appropriate, following community guidelines.

•

Maintain and enhance build scripts, packaging pipelines, and system tooling to support secure and reproducible builds.

•

Monitor upstream projects, Debian security alerts, mailing lists, and community patches to keep packages updated and secure.

•

Collaborate on architecture and design decisions affecting distribution direction, package quality, and security posture.

•

Document processes, package changes, upstream contributions, and security fixes for internal and external stakeholders.

•

Work closely with kernel, platform, infrastructure, and security engineering teams.

Security Engineering & Hardening

•

Investigate, triage, reproduce, and remediate CVEs across the distribution; create, backport, test, and sign patches.

•

Implement distribution-wide- hardening aligned with STIG, CIS Benchmarks, and secure coding guidelines.

•

Participate in FIPS-related- development and validation activities. Work with OpenSSL, GnuTLS, and other crypto toolkits to maintain secure configurations and enforce strong defaults.

•

Develop and maintain secure boot, and trusted boot workflows (e.g., UEFI Secure Boot, TPM integration).

Key skills and competencies for succeeding in this role are

•

B.Sc. in Computer Science or related technical field.

•

12+ years of hands-on experience in Linux engineering, software development, or distribution maintenance.

•

Familiarity with STIG, CIS, FIPS 140‑x, NIST 800‑53, or similar security frameworks.

•

Experience with secure boot, UEFI firmware, TPM, key signing, and related boot‑chain security.

•

Knowledge of automated security scanning and vulnerability (CVE) management tools.

•

Strong understanding of Linux internals; Debian experience preferred

•

Proficiency in a systems programming language (C/C++, Rust) and/or scripting language (Python, shell).

•

Understanding of secure coding practices and general software security principles.

•

Must reside in Greater Austin, TX area with ability to be present on site.

•

United States Citizenship required or permanent residency is required.

Preferred Qualifications

•

Knowledge of cryptographic libraries (OpenSSL, GnuTLS), PKI concepts, and secure protocol configuration.

•

Experience with Debian packaging tools.

•

Experience contributing to Debian or other open-source communities.

•

Familiarity with CI/CD systems and secure build pipelines (GitLab CI preferred)

•

Understanding of kernel security features and Linux security modules (AppArmor, SELinux).

•

Experience with containerization and cloud technologies, including Docker, Kubernetes, AWS.

•

Strong analytical and problem-solving abilities.

•

Ability to collaborate effectively within distributed teams.

•

Excellent communication and documentation skills.

•

Self-motivated- with the ability to work independently on complex tasks.

Special Clearance Requirements

This position will perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil, and therefore any offer will be contingent upon verification of both of these requirements.

Privacy Notice - Active Candidates: https://www.aptiv.com/privacy-notice-active-candidates

Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law.