Lead Cybersecurity Software Engineer
Futran Tech Solutions Pvt. Ltd. - troy, MI
Apply NowJob Description
Title: Lead Cybersecurity Software Engineer Location: Troy, MI (Onsite Role) Hiring Type: Full Time The Lead Cybersecurity Software Engineer will lead the vehicle software execution team with software communication development plans and execution for the company. This position will be responsible for working cross functionally to ensure the software cybersecurity plans for the company have a high quality execution. Responsibilities In this position the candidate will develop Communications requirements and manage the development, sourcing, and engineering of these solutions. • Lead product software cybersecurity requirements and architecture in coordination with the engineering cross-functional team and stakeholders. • Lead the creation, maintenance, review, and documentation of cybersecurity engineering work products in compliance with automotive cybersecurity standards, such as ISO/SAE 21434, SAE J3061, and NIST SP 800-53. • Lead the security best practices, design reviews, implementation, and software security concept development. • Interface with all product domains such as systems, hardware, and production to ensure the proper implementation of security requirements. • Lead requirements and test methods for different authentication techniques for embedded devices with a perspective of different attack vectors in embedded ECU modules. • Lead hardware-software interface development, testing methods and execution to ensure compliance and within the guidelines for cyber security threats, risks and feature implementation specs interfacing various ECUs modules in vehicle with gateway module or external connectivity. • Analyze tools for results of secure code analyzers, static code analyzers, and other tools to make sure threat and vulnerability information for future architectures are assessed. • Work closely with the system and hardware team to identify potential threats, vulnerabilities, and risks in the system to implement and develop a secure and robust solution covering both hardware and software which may include hardware accelerators, secure on-board communication, secure bootloader, and other related features. • Conduct threat analysis, vulnerability assessments, and risk assessments with software vendors, ECU suppliers/manufacturers and 3rd party engineering services. • Support RFI/RFQ activities. • Develop, configure, integrate and test AUTOSAR software-based cybersecurity stack. Skills Required • Bachelor's degree in engineering Electrical and/or Computer engineering, Electronics Engineering, Information Science. • Minimum of 5 years' experience in automotive embedded software development. • Minimum of 3 years' experience in cybersecurity features, best practices and principles. Apply and create process for cybersecurity standard practices implementation (ISO 21434, SAE J3061) and vulnerability management standards. • Minimum of 2 years' experience in development, design and testing of embedded work products such as bootloader interaction, secure boot/hash-algorithm, software cybersecurity mechanism for gateway module, within ECU and external connectivity to other ECUs in vehicle. Preferred Qualifications: • Master of science degree in engineering Electrical and/or Computer engineering, Electronics Engineering, Information Science. • Performed vulnerability analyses and TARAs (threat analysis and risk assessment). • Knowledge of mitigation techniques for embedded devices. Previous pen test work is desirable. • Experience with software work products developed in compliance with ISO-26262 and ASPICE standards. • Experience with AUTOSAR based embedded operating systems, QNX/embedded Linux, and automotive android. • Working knowledge of embedded automotive security concepts and technologies. • Knowledge in determining security vulnerabilities early in the system development in order to create a robust security concept. • Strong knowledge of automotive communication protocols such as automotive Ethernet, CAN, and UDS • Experience in requirements, change and configuration management tools such as IBM-DOORS-NG or Polarian, JIRA, Bitbucket, IBM-RTC etc.
Created: 2024-11-06