Job Description

Responsibilities Responsibilities include but are not limited to: Drive the work with Architectural Cybersecurity Zones. Performing TARA for CS Solutions owned by central team. Supporting CS Vehicle Architect by holistic TARA on vehicle level if needed. Define technical solutions/mitigations/concepts to be generically applied based on the Zones. Educate and lead engineering teams in defined cybersecurity solutions Examples of solutions/mitigations like secure network protocol suites, access control, Hardware Security Module, Secure Boot, firewalls, Secure Software Download, IDS, On and Off board security communication, PKI. Provide input to Vehicle Architectural Design with regards to exposed interfaces and topology. Standards and regulations related responsibilities: Keep up to date on new regulations and standards in addition to ISO21434 and R155 to be considered in the CSMS. For instance, new China GB/T or US regulations. Ensure best practice design principles are applied and that sufficient guidance is added in the CSMS. Participate in and contribute to external work groups and conferences with focus on Vehicle Cybersecurity. Represent the cybersecurity central team in corresponding technical and decision forums. Authorities and Competencs Authorities: Release and sign off for related top level cybersecurity attribute and functional requirements in requirement management tool in accordance with GTT Product Document Management. Mandate to introduce technical solutions, request POV or POC to GTT steering committee or Product and Service Cybersecurity Committee (PSCC). Request contribution and ownership from stakeholders involved to realize and implement the CS requirements. Competences: Knowledge of performing TARA. Experience within Automotive Embedded System Engineering. Documented Experience in cybersecurity architecture and concept design for automotive systems, including in-vehicle networks, embedded software, connected services, and backend infrastructure. Documented experience of working with type approval (R155 & R156) and ISO/SAE 21434. Documented experience of writing cybersecurity requirement based on common practices. Experience in agile methods. Knowledge in C-ITS, ISO 15118-2, ISO 15118-20, wireless and connected communication technologies (applicable if working with PKI solution) Qualification B.E/B.Tech or ME/M.Tech in Computer Science, Electronics or equivalent with minimum 4 years of experience in cybersecurity. Documented experience in at least one of these areas: system safety concept design, architect design or cybersecurity concept design. Previous experience of working with type approval for R155 Previous experience of working as CS engineer or CS architect with focus on embedded engineering. Documented experience of working with ISO/SAE 21434 and CSMS Knowledge within cybersecurity requirement system engineering Knowledge of TARA execution. Knowledge of connected communication technologies (CAN, Ethernet) Documented experience of writing cybersecurity requirement based on common practices. Good knowledge aboutIntrusion Detection System and PKI (both Onboard (Vehicle/ ECU level) and Offboard (Cloud)) Experience in agile methods