Senior Cybersecurity & OTA Engineer

About The Position

Requirements

• Bachelor of Science (BS) in Engineering, Computer Science, or Cybersecurity.
• Minimum 5 years of experience in cybersecurity engineering, preferably in automotive, commercial, or heavy-duty vehicle systems.
• Direct experience with: Threat analysis and risk assessment (TARA), cybersecurity concept development, and cybersecurity lifecycle management
• Vehicle network security for CAN bus and J1939 protocols
• OTA update systems design, deployment, and validation including secure boot, firmware signing, and delta update strategies
• Familiarity with: Functional safety standards (ISO 26262) and their interaction with cybersecurity requirements.
• Heavy-duty vehicle E/E architectures and connected vehicle ecosystems.
• Penetration testing tools and methodologies (e.g., Wireshark, CANoe, bus analyzers) for vehicle network security assessment.
• Standard problem-solving methodologies and tools such as: 8-D, Five Whys, & Fishbone diagrams, as well as cybersecurity incident response frameworks.
• SAE vehicle communication standards such as J1939, J1939-76 (security), and automotive Ethernet protocols.
• Industry and regulatory standards such as UN R155, UN R156, NIST Cybersecurity Framework, APTA, etc.
• Ability to lift 25 lbs.
• Prolonged periods of sitting/standing at a desk and working on a computer
• Regularly required to sit, stand, and walk and occasionally kneel or squat
• The ideal candidate must be able to complete all physical requirements of the job with or without a reasonable accommodation.
• Must be able to navigate manufacturing environment, comfortable around heavy machinery, tools, etc.
• Must be able to wear Personal Protective Equipment, (i.e. safety glasses, bump caps, hearing protection, etc.)
• 5% travel may be required

Responsibilities

• Conduct Threat Analysis and Risk Assessment (TARA) for vehicle E/E systems
• Define cybersecurity goals, requirements, and specifications for on-vehicle assets
• Develop and maintain the vehicle cybersecurity management system (CSMS) and ensure lifecycle compliance
• Design and implement OTA update architecture including secure boot, code signing, version management, rollback mechanisms and update orchestration
• Oversee cybersecurity validation and verification activities including penetration testing and vulnerability assessments
• Collaborate with E/E and software teams to integrate cybersecurity controls into the vehicle network architecture (CAN, Ethernet)
• Support functional safety analysis and ensure cybersecurity measures do not compromise safety
• Collaborate with suppliers to ensure third-party components and subsystems meet cybersecurity requirements and compliance
• Mentor and provide technical direction for junior engineers on cybersecurity and OTA best practices
• Guide company direction for on-vehicle cybersecurity goals
• Analyze and provide feedback to customer and industry requirements and standards

Benefits

• Flexible schedules (depending on project needs)
• Excellent compensation including company paid medical premiums, generous retirement plan and other comprehensive benefits