In-vehicle & Mobility Cybersecurity Engineer

We are seeking a motivated and technically minded In-Vehicle & Mobility Cybersecurity Engineer to join our growing this role you will contribute directly to securing our innovative vehicle and mobility solutions. This is an excellent opportunity for an engineer with a foundational understanding of automotive systems and cybersecurity principles to gain hands-on experience in a critical and evolving domain. You will work closely with senior engineers to implement security measures conduct testing and analyze vulnerabilities.

1. Assist in the implementation and integration of cybersecurity features and controls into automotive hardware and software components following established designs and guidelines.
2. Perform various security tests including vulnerability scanning manual penetration testing and fuzz testing on in-vehicle systems ECUs and communication protocols. Document findings clearly and support remediation efforts.
3. Help identify potential security vulnerabilities in vehicle systems and components through analysis testing and research contributing to risk assessments.
4. Apply knowledge of in-vehicle communication protocols (e.g. CAN CAN-FD Automotive Ethernet LIN) and network topologies to analyze their security implications and support secure configurations.
5. Contribute to the security of embedded systems and Electronic Control Units by assisting with the implementation and verification of secure boot Hardware Security Modules and Trusted Execution Environments.
6. Support the application of cryptographic principles and Public Key Infrastructure concepts in securing in-vehicle communication software updates and data protection.
7. Participate in secure design reviews contribute to threat modeling exercises and ensure adherence to secure coding practices throughout the product development lifecycle.
8. Prepare detailed documentation of security test plans findings and technical reports for internal teams.
9. Work collaboratively with cross-functional engineering teams learn from senior cybersecurity experts and stay updated on the latest automotive cybersecurity threats and technologies.

Education Qualification

Bachelors Degree in Computer Science Software Engineering or Electronics/Electrical Engineering.

Number of Years of Experience

Over 3 years of experience in automotive product cybersecurity including a minimum of 1.5 years specializing in in-vehicle and mobility cybersecurity.

Leadership Skills

• The ability to not just perform assigned tasks but also to identify potential security issues or areas for improvement.
• Taking full responsibility for the assigned cybersecurity tasks ensuring quality meeting deadlines and following through on commitments.
• Demonstrating the drive to learn new technologies research solutions and take on new challenges without constant supervision.
• Clearly articulate technical cybersecurity concepts findings (e.g. from penetration tests) and recommendations to peers and senior engineers in a concise and understandable manner.
• Actively participating in team discussions contributing to shared goals and supporting colleagues to achieve collective cybersecurity objectives.
• A strong desire to stay updated on the latest cybersecurity threats technologies and best practices relevant to in-vehicle and mobility systems actively seeking out knowledge.

Functional/Technical Skills

• Ability to read understand and contribute to the analysis of cybersecurity requirements for specific vehicle features or components translating them into actionable tasks.
• Capability to participate in threat modeling sessions assisting in identifying potential attack vectors and assessing risks for in-vehicle systems and connected services under guidance.
• Understanding and applying secure development best practices throughout the product lifecycle including participating in secure design reviews contributing to secure coding and supporting security testing efforts.
• Practical experience in executing various security tests such as vulnerability scanning basic penetration testing and fuzz testing following defined procedures and accurately documenting findings.
• Assisting in the identification analysis and tracking of vulnerabilities within assigned components and supporting the development of remediation plans.
• Basic understanding of relevant automotive cybersecurity standards (e.g. ISO/SAE 21434 NIST Cybersecurity Framework) and contributing to their application in technical work.
• Ability to technically implement and integrate cybersecurity features and controls into automotive software and hardware components.
• Solid understanding of in-vehicle communication protocols such as CAN CAN-FD Automotive Ethernet and LIN including their basic security considerations and common attack vectors.
• Understanding of in-vehicle network topologies communication flows and the common security mechanisms and challenges associated with them.
• Familiarity with diagnostic protocols (e.g. UDS SOME/IP) and their role in vehicle diagnostics and potential security implications.
• Knowledge of securing embedded systems and Electronic Control Units including foundational concepts like secure boot Hardware Security Modules and Trusted Execution Environments.
• Hands-on experience with common security testing tools for vulnerability assessment basic penetration testing and fuzz testing (e.g. Wireshark CANoe basic vulnerability scanners).
• Proficiency in at least one relevant programming or scripting language (e.g. Python JS) for security analysis automation of tasks or developing simple security tools.
• Awareness of cybersecurity concepts related to connected vehicle services cloud platforms and Over-the-Air (OTA) updates particularly as they interact with the vehicle.