Automotive Cyber Security Engineer

Responsibility / Expectations from the role 

Summary:
In this role Cyber Security Engineers will focus on all aspects of cyber security for control modules to prevent threat actors from compromise of automotive systems. You will be involved in the design, implementation, and validation of security controls for software for a variety of vehicle features, such as: over the air updates, connectivity features, starting, locking, lighting, alarms, windows, powered closures, seats, climate control, and others.


What you need for this position:

• Follow/implement the Cybersecurity development process per ISO 21434 and OEM specific strategy.
• Review feature/system cybersecurity requirement and other partner requirement to develop software cybersecurity requirement.
• Development and validate cybersecurity features including secure boot, secure software update, secure communication (CAN/Ethernet), secure logging, secure diagnostics, and secure debug.
• Perform/support software unit verification /integration testing on bench/HIL/vehicle environment.
• Build vital work product per ISO 21434 and UNECE WP.29 and collect required test evidence to build software security case.
• Support TARA and system cybersecurity requirements.
• Support system engineer and HW engineer to build hardware software interface.
• Support ECU manufacture process related to cybersecurity material (key/password/certificate).
• Develop and maintain security requirements and design validation methodologies
• Working level experience with Adaptive AUTOSAR (ARA::Crypto, ARA::IDSM, ARA::EM, and ARA::IAM)
• Working level experience with ethernet and ethernet security (TLS, VLAN, Firewalls). EAP-TLS, DOIP and MACSAC a preferred.
• Automotive cybersecurity experience required
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Information Security & Assurance, Information Technology or related field required.
• 3+ years of automotive/vehicle electronics and IT or wireless (cellular) security experience
• Understanding of end-to-end connected vehicle (telematics and infotainment) and wired/wireless communication protocols (CAN, CAN-FD, Flex-ray, Ethernet, BLE, Wi-Fi etc.)
• Awareness of Cryptography techniques (types and Systems) and experience in implementation and validation of Cryptography codes is an advantage
• Knowledge on vehicle cybersecurity standard SAE J3061.
• Knowledge over Key-provisioning, securing mobile apps, OTA(Over The Air update), know-hows about tampering and reverse engineering techniques.

Keywords: Automotive, Cybersecurity, SAE J3061, ISO 21423, AUTOSAR