Automotive Cyber Security Engineer

Role: Cyber Security - Automotive background

Location: Dearborn, MI- Onsite

Full Time Position

Job Description

ADAS Software Engineer - Embedded Security

We are seeking a diligent, detail-driven professional to provide vital expertise in support of our Advance

Driver Assistance Systems Embedded Software development activities. This involves applying

engineering principles and analytical techniques to support the delivery of cybersecurity solutions to

protect the next generation of ADAS ECU. Cybersecurity Engineers will evaluate, critique, and drive

secure designs from concept to implementation. Engineers are expected to take ownership of

assignments including developing in-depth understanding of the technologies under review, working to

close security gaps and mitigate identified vulnerabilities, and report out to management.

You will:

1. Follow/implement the Cybersecurity development process per ISO 21434 and OEM specific strategy.
2. Review feature/system cybersecurity requirement and other partner requirement to develop software cybersecurity requirement.
3. Support development of software architecture design based on system design in architecture tool (i.e., Magic Draw) and allocate the software cybersecurity requirement to the architecture.
4. Development and validation of cybersecurity features including secure boot, secure software update, secure communication (CAN/Ethernet), secure logging, secure diagnostics, and secure debug.
5. Perform/support software unit verification /integration testing on bench/HIL/vehicle environment.
6. Build vital work product per ISO 21434 and UNECE WP.29 and collect required test evidence to build software security case.
7. Support cybersecurity technical specialist to ensure ISO 21434 and UNECE WP.29 compliance including cyber security auditing.
8. Support cybersecurity system engineer and feature owner to build feature cybersecurity work product including TARA and system cybersecurity requirement.
9. Support system architecture and system engineer to build ECU/module system design and cybersecurity concept.
10. Support system engineer and HW engineer to build hardware software interface.
11. Participate of the development and tracking of detailed deployment timing plans to support production validation of ECU software on benches, Voice of Customer Fleet (VoCF),
12. Management Lease Vehicles (MLV), Beta and End Customer vehicles.
13. Support ECU manufacture process related to cybersecurity material (key/password/certificate).
14. Support field issue resolution and root-cause analysis.
15. Supply to process improvement to achieve ASPICE compliance.
16. Participate in agile development teams in applying cyber security standard processes to product development projects and programs

The minimum requirements we seek:

1. B.S. in Computer Science, Electrical Engineering, Computer Engineering, or related field or a combination of education and equivalent experience
2. 2+ years' experience in embedded software development experience using RTOS (i.e.
3. AUTOSAR/OSEK, LINUX/QNX/POSIX).
4. 1+ years of experience in a technical cyber security or architecture or software developer position
5. 1+ years of experience with in-vehicle network architecture, modules, and protocols (CAN etc.)

Our preferred requirements:

1. M.S. in computer science, Electrical Engineering, Computer Engineering, or related field
2. 3+ years' experience in embedded software development for security critical system.
3. 3+ years' experience in security critical software development under classical/adaptive
4. AUTOSAR framework.
5. 1+ years' experience in AUTOSAR security stack configuration (SecOC/TLS/HW&SW Crypto).
6. Familiar with Cybersecurity industrial standard (i.e. ISO 21434).
7. Familiar with software change control and issue tracking tool (i.e. Jira).
8. Familiar with software requirement management tool (i.e. Polarion, Doors, JAMA).
9. Familiar with software architecture design tool based on UML/SysML (i.e. MagicDraw,
10. Enterprise Architect).
11. Familiar with software integration test tool (i.e. CANoe, CANalyzer, CANape).
12. Familiar with port/service scan tool (i.e. nmap).
13. Familiar with fuzz testing tool (i.e. Defensics Networking Test Suites).
14. Familiar with Common Vulnerabilities and Exposures (CVE) and appropriate methods of mitigation.
15. Familiar with CI/CD workflow (i.e. Jenkins).
16. Ability to provide engineering documentation including requirements, specifications, test plans, etc.
17. Ability to work independently and collaboratively
18. Strong communication and analytical skills
19. Conceptual understanding of security methodologies and challenges
20. Experience applying security fundamentals (such as Cryptography, keying, PKI, TLS)

Automotive Cyber Security Engineer- Dearborn, MI-Onsite-Full Time Position