Product Cyber Security Architect II

About The Position

Requirements

• Bachelor’s degree (preferably in Computer Engineering, Electrical Engineering, Computer Science, Cybersecurity, or related field.
• 2-4 years of relevant experience required.
• Foundational understanding of cybersecurity principles, including threat modeling, risk assessment, and vulnerability management.
• Basic familiarity with vehicle electronics, embedded systems, or networked control systems (e.g., ECUs, CAN, Ethernet, telematics).
• Experience applying or learning frameworks such as ISO/SAE 21434, UNECE R155/R156, or similar cybersecurity standards.
• Ability to analyze technical issues, identify root causes, and communicate findings clearly.
• Comfort working with cross functional teams, suppliers, or technical partners.
• Strong problem solving skills, attention to detail, and willingness to learn new tools, methods, and technologies in the cybersecurity domain.
• Ability to follow established engineering processes and document work clearly and accurately.

Nice To Haves

• Hands on experience performing Threat Analysis and Risk Assessment (TARA) or similar structured security assessments.
• Familiarity with secure embedded software development practices, including secure coding, static analysis, and penetration testing of ECUs or connected systems.
• Working knowledge of automotive communication protocols (e.g., CAN, LIN, Automotive Ethernet) and related security tooling.
• Experience collaborating with suppliers on cybersecurity deliverables, such as cybersecurity claims, evidence packages, or system hardening measures.
• Advanced proficiency in cybersecurity testing for embedded and vehicle systems, including hands on experience with penetration testing, fuzzing, protocol manipulation, hardware in the loop (HIL) security testing, and use of specialized tooling (e.g., CANoe/CANalyzer, Vector tools, ECU simulators, fuzzing frameworks).

Responsibilities

• Execute cybersecurity activities according to the secure vehicle development process, including TARAs, vulnerability assessments, risk treatment planning, and reuse analyses.
• Define cybersecurity requirements for ECUs and all in‑vehicle and external interfaces.
• Partner with problem coordination, compliance, and quality teams to triage field security issues and provide subject‑matter expertise for root‑cause analysis and corrective actions.
• Provide technical guidance to integrate new cybersecurity controls and features into existing and future vehicle architectures.
• Evaluate the cybersecurity capabilities of current systems and supplier solutions to resolve design, integration, and testing challenges.
• Follow established engineering processes to ensure cybersecurity considerations are integrated into all development activities.
• Support the development and promotion of a strong cybersecurity culture by contributing to internal standards, guidelines, and best practices.