Derive specifications and system architectures for cybersecurity requirements.
Develop cybersecurity concepts.
Act as the main technical interface with customers on cybersecurity matters, supporting the analysis and definition of requirements for embedded systems (Hardware and Software) and incorporating cutting-edge solutions in embedded systems security.
Document system-level information related to Cyber Security.
Perform vulnerability analyses and Threat Analysis and Risk Assessment (TARA).
Collaborate closely with software development, hardware development, testing, and production teams to ensure a shared understanding of cybersecurity threats, risks, features, and smooth implementation.
Support security-related customer milestones and assessments.
Analyze tools and results from secure code analyzers, static code analyzers, and other relevant tools.
Analyze threat and vulnerability information to prioritize for current and future architectures.
Required Skills
5+ years of relevant experience.
Strong understanding of automotive embedded systems and their interactions with other systems throughout the lifecycle.
Expertise in applying and tailoring existing security practices, including Cyber Security
Standards (ISO 21434, SAE J3061), and vulnerability management standards.
Knowledge of various authentication techniques for embedded devices.
Familiarity with different attack vectors for embedded devices; previous penetration testing experience is desirable.
Understanding of mitigation techniques for embedded devices.
Knowledge of ISO 26262 and functional safety.
Ability to develop and articulate technical decisions and recommendations effectively to both technical and non-technical audiences through clear verbal and written communication.
Proven ability to work meticulously with attention to detail in a fast-paced environment, identifying threats, defects, and weaknesses in complex systems, and identifying opportunities for process improvement.