Security Architect

About The Position

Requirements

• 7+ years of hands-on experience designing and deploying security solutions for embedded automotive systems, with proven expertise in:
• Automotive communication protocol security (CAN bus hardening, Ethernet intrusion detection)
• Cryptographic engineering for resource-constrained environments (ECC optimization, post-quantum crypto prototyping)
• Proficiency in automotive security toolchains: Embedded debug tools (JTAG, UART, Trace32) Vehicle network analysis (Vector CANoe, Wireshark dissectors for SOME/IP) ECU flashing and diagnostic tools (ODX/PDX scripting, UDS exploit development)
• Strong systems programming skills in C/C++/Rust for bare-metal and RTOS environments, with experience in:
• Secure over-the-air update implementations Real-time intrusion detection systems for vehicle networks
• Demonstrated ability to lead technical security initiatives, including:
• Threat modeling for complex automotive architectures Security code reviews for safety-critical embedded software Mentoring junior engineers in secure coding practices
• Familiarity with automotive development workflows: AUTOSAR Classic/Adaptive security components

Nice To Haves

• Contributions to open-source automotive security projects (e.g., OpenXC, SavvyCAN)
• Experience with autonomous vehicle sensor security (LiDAR/Camera spoofing countermeasures)
• Background in hardware security evaluation (glitching, fault injection, TEMPEST)
• Development of vehicle-specific penetration testing rigs (CAN bus injectors, ECU emulators)
• Public research on automotive vulnerabilities (CVEs, conference presentations, whitepapers)
• Secure boot implementation and hardware-rooted trust chains (HSM provisioning, TEE architectures)
• Reverse engineering and vulnerability research on automotive firmware (ARM Cortex-M/R, QNX, AUTOSAR)
• Experience with hardware security module integration
• Familiarity with CI/CD pipelines for ECU software with SBOM generation
• Familiarity with Hardware-in-the-loop (HIL) security testing

Responsibilities

• Develop cybersecurity architectures compliant with ISO/SAE 21434 engineering requirements and UN R155 Cybersecurity Management System (CSMS) mandates across all vehicle lifecycle phases (concept, development, production, operation, decommissioning)
• Implement UN R156-compliant Software Update Management Systems (SUMS) with secure OTA update mechanisms, cryptographic verification, and version control for automotive ECUs
• Conduct threat analysis and risk assessments (TARA) per ISO 21434 Annex C requirements, addressing 69 attack vectors identified in UN R155 Annex 5
• Design hardware-rooted security controls for automotive SoCs including secure boot, hardware security modules (HSM), and TEE implementations
• Collaborate with suppliers to ensure Tier 1/Tier 2 component security meets ISO 21434 supply chain requirements and UN R155 post-production obligations
• Develop automotive-specific security requirements for AI/ML systems in autonomous driving platforms, addressing model integrity and adversarial attack prevention

Benefits

• equity in the form of options and/or restricted stock units
• comprehensive health, dental, vision, life and disability insurance coverage
• 401k retirement benefits with employer match
• learning and wellness stipends
• paid time off