Senior Embedded Cybersecurity Engineer

LHP Engineering Solutions-posted 1 day ago
Full-time • Mid Level
Columbus, IN
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

LHP Engineering Solutions is a global Functional Safety leader committed to creating safe transportation with developing technologies such as Electric Vehicles and Advanced Driver Assistance Systems. At LHP we ensure Functional Safety and Cyber Security development of these systems and technologies by leveraging our core expertise with widely accepted standards such as AUTOSAR, ISO26262, ASPICE, ISO/SAE 21434. We are seeking a Senior Embedded Cybersecurity Engineer to act as the cybersecurity lead for connected, firmware-based products. You will work closely with engineering, IT, manufacturing, and operations teams to design, implement, and operate secure solutions across the entire product lifecycle. In this role you will Serve as the cybersecurity subject-matter expert in new product development (NPD) firmware activities and cross-functional project meetings. Provide cybersecurity and IT operational guidance to firmware, platform, and IT teams on secure design, coding, configuration management, and deployment practices. Manage cybersecurity aspects of Azure build/CI/CD pipelines, including Azure DevOps (ADO), Azure Key Vaults, and key/certificate lifecycle management. Lead and document cybersecurity risk assessments for critical assets (embedded devices, cloud services, mobile applications, manufacturing systems, and supporting IT infrastructure). Perform cybersecurity assessments (Ex: RED EN-18031 and CRA assessments) on targeted products and coordinate remediation with engineering teams. Develop, implement, and maintain cybersecurity policies and processes for IoT products across development, production, manufacturing, operations, and post-deployment support. Create and maintain cybersecurity work products and evidence to support ISO 27001 certification and other relevant standards. Review, triage, and drive closure of Azure ADO tickets related to cybersecurity implementation and vulnerabilities. Coordinate and provide technical guidance for penetration testing of embedded devices, mobile applications, and cloud services; review findings and drive remediation plans. Monitor industry trends, standards, and regulations related to embedded/IoT cybersecurity and provide recommendations to improve architectures, controls, and processes.

  • Serve as the cybersecurity subject-matter expert in new product development (NPD) firmware activities and cross-functional project meetings.
  • Provide cybersecurity and IT operational guidance to firmware, platform, and IT teams on secure design, coding, configuration management, and deployment practices.
  • Manage cybersecurity aspects of Azure build/CI/CD pipelines, including Azure DevOps (ADO), Azure Key Vaults, and key/certificate lifecycle management.
  • Lead and document cybersecurity risk assessments for critical assets (embedded devices, cloud services, mobile applications, manufacturing systems, and supporting IT infrastructure).
  • Perform cybersecurity assessments (Ex: RED EN-18031 and CRA assessments) on targeted products and coordinate remediation with engineering teams.
  • Develop, implement, and maintain cybersecurity policies and processes for IoT products across development, production, manufacturing, operations, and post-deployment support.
  • Create and maintain cybersecurity work products and evidence to support ISO 27001 certification and other relevant standards.
  • Review, triage, and drive closure of Azure ADO tickets related to cybersecurity implementation and vulnerabilities.
  • Coordinate and provide technical guidance for penetration testing of embedded devices, mobile applications, and cloud services; review findings and drive remediation plans.
  • Monitor industry trends, standards, and regulations related to embedded/IoT cybersecurity and provide recommendations to improve architectures, controls, and processes.
  • B.S. or M.S. in Electrical Engineering, Computer Engineering, Computer Science, Cybersecurity, or a related field.
  • 5+ years of experience in embedded, IoT, or OT cybersecurity, including hands-on work with firmware-based products.
  • Demonstrated experience with Azure DevOps (ADO) pipelines and Azure Key Vault (or similar CI/CD and secret-management platforms), including key and certificate lifecycle management.
  • Strong background in cybersecurity risk assessment and management (e.g., threat modeling, risk analysis methods) and familiarity with ISO 27001 and at least one of ISO 21434 or IEC 62443.
  • Solid understanding of embedded hardware/software interactions, secure boot concepts, and common attack vectors against embedded and IoT devices.
  • Experience with communication protocols used in automotive, material handling, or industrial systems (Ex: CAN, LIN, Ethernet/TCP/IP, industrial fieldbuses).
  • Proven ability to collaborate with multi-disciplinary teams (firmware, IT, DevOps, manufacturing, suppliers, and leadership) and communicate complex cybersecurity topics clearly to non-experts.
  • Strong documentation, ticketing, and organizational skills.
  • Experience performing or leading assessments against RED EN-18031 and/or EU Cyber Resilience Act requirements.
  • Prior experience supporting ISO 27001 certification efforts, including creation of policies, procedures, and audit evidence.
  • Experience coordinating third-party penetration tests and managing remediation programs.
  • Knowledge of hardware security modules (HSMs), secure elements, and secure boot implementations for embedded devices.
  • Familiarity with automotive/industrial safety and quality standards (Ex: ISO 26262, ASPICE) and their relationship to cybersecurity.
  • Professional certifications such as CISSP, CSSLP, CEH, or comparable credentials.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Cybersecurity Engineer Resume Examples
Cybersecurity Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service