Principal Embedded Cyber Security Engineer
About The Position
Archer is an aerospace company based in San Jose, California building an all-electric vertical takeoff and landing aircraft with a mission to advance the benefits of sustainable air mobility. We are designing, manufacturing, and operating an all-electric aircraft that can carry four passengers while producing minimal noise. Our sights are set high and our problems are hard, and we believe that diversity in the workplace is what makes us smarter, drives better insights, and will ultimately lift us all to success. We are dedicated to cultivating an equitable and inclusive environment that embraces our differences, and supports and celebrates all of our team members.
Requirements
- 10+ years of experience in a related field.
- At least a BS in Cybersecurity, Electrical Engineering, Computer Engineering, Computer Science, or related degree.
- Hands-on experience through the Full Systems/Software Development Life Cycles in a regulated industry
- Familiarity with diverse cybersecurity tools (e.g. isograph, CVE database, etc.) and technologies used for the development, testing and analysis of safety critical embedded systems.
- A cybersecurity mindset
- Exceptional organizational and communication skills
Nice To Haves
- Hands-on DevOps experience
- Hands-on Site Reliability experience
- Experience with Supplier Management
- Experience with Agile methodologies
- Proficiency with ISO27000 framework
- Experience with AS9100 quality system
- CISSP Certification
Responsibilities
- Be a Principal Cybersecurity Engineer on a world class team with demonstrated expertise in Cybersecurity of embedded safety critical flight Systems/Software/Hardware complying with RTCA DO-326B/DO-355A/DO-356A/ISO27001/ASTM F3532-22.
- Participate in the definition and documentation of cybersecurity planning, in particular, security certification planning, definition of the security environment, risk management planning, security verification planning, and continued airworthiness planning.
- Performing of cybersecurity Assessments: Data Flow (including Data and Control Coupling), development of threat conditions and scenarios (based on Aircraft Functional Hazard Assessment) and compilation of Preliminary Security Risk Assessment.
- Support definition of the Security Architecture on Aircraft Level
- Support definition of ground based Security Architecture (e.g. PKI infrastructure)
- Validation of Layered Security Architecture including Common Mode Analysis
- Validation of Security Controls and assessment of their effectiveness (including corresponding metrics)
- Definition of Security Requirements based on identified and architected security measures (controls)
- Oversight of cybersecurity efforts on system level, including platform software, flight controls, motor control, battery management, displays, communication, navigation, surveillance and others.
- Verification of Cybersecurity requirements, either through analysis or Blue Team testing
- Management of Red Team testing efforts
- Implement and maintain cybersecurity documentation, processes, and policies, including supplier cybersecurity audits and assessments.
- Interface with certification authorities to support cybersecurity aspects of certification
- Foster team collaboration, promote and support personal development.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Principal
Number of Employees
501-1,000 employees
