# Cryptography Engineer

**Company**: Yubico
**Location**: Stockholm
**Work arrangement**: hybrid
**Experience**: mid
**Job type**: full-time
**Category**: Engineering
**Industry**: Technology

**Apply**: https://jobs.lever.co/yubico/95a3bdf2-31d7-44ee-aec4-6bc1c00c3796
**Canonical**: https://yubhub.co/jobs/job_de4c0f0b-c32

## Description

Meet Yubico: the creator of the most secure passkeys and leading provider of hardware authentication security keys.

Our company’s mission is to make secure login easy and available for everyone. Yubico was founded in 2007 by Stina and Jakob Ehrensvard, and is public on Nasdaq Stockholm Main Market: YUBICO.

We are a global company with a strong company culture and employees located in over 14 countries. Yubico’s headquarters are based in Stockholm, Sweden and Santa Clara, CA.

Aligned with our mission to make the internet more secure for everyone, Yubico donates YubiKeys to organizations helping at-risk individuals through our philanthropic initiative, Secure it Forward.

## Tasks & Responsibilities:

Implement, maintain and optimize cryptographic algorithms and primitives (e.g. encryption, hashing, digital signatures, key exchanges) that run on YubiKeys and YubiHSMs

Follow research about classical algorithms (RSA, ECC, etc.), as well as Post Quantum Cryptography algorithms (ML-DSA, ML-KEM, etc.)

## Basic Qualifications:

Ability to follow research in cryptography

Good understanding of classical (a)symmetric cryptography and PQC

Knowledge of side-channel attacks (EM, power and timing analysis etc.) and mitigations against them

Disciplined approach in writing correct and highly efficient code

## Preferred Qualifications:

Low level programming experience (C and Assembly)

Experience with embedded architectures

Ability to adapt and tune algorithms on resource constrained environments

Knowledge around fault injection attacks

Hands-on experience with lab equipment such as oscilloscopes, logic analyzers and similar

## Skills

### Required
- cryptography
- algorithm design
- low-level programming
- embedded systems
- side-channel attacks

### Nice to have
- C and Assembly
- embedded architectures
- fault injection attacks
- lab equipment