EN
DESecurity Consultant (Automotive)
Berlin, Berlin, Germany
| Posted: | 35d ago |
| Location: | Berlin, Berlin, Germany |
| Job Ref: | BH-40882 |
| Expiry date: | 12/7/2023 |
Security Consultant (Automotive)
- Long term contracts (Contract/Freelance)
- Remote
- Rates dependent on experience
- Some travel may be needed dependent on customer needs
Responsibilities
- Understanding the different automotive cyber security regulations such as J3061, UNECE WP29 R155, ISO/SAE 21434 and ISO 26262.
- Performing offensive cybersecurity activities in compliance with organizations policies and applicable regulation.
- Reviewing internal requirements, Customer requirements and Specifications. Support Design Reviews, internal and with suppliers.
- Collaborating with the Product Line projects by communicating the results of the tests, e.g. identified vulnerabilities, and helping them in bringing the security to the expected level. Follow-up with the project the security fixes until the expected security level is achieved.
- Providing technical expertise to stakeholders under the scope of incident management.
- Providing technical reports related to uncovered cybersecurity defects, including the initial assessment as well as the methods, tools and entry points that attackers may use to exploit vulnerabilities or weaknesses.
- Supporting technical architecture and standards assignments.
- Following standardization rules.
- Following the evolution of the state of the art. Create, adapt or improve testing methods to identify new vulnerabilities.
- Perform functional, Interface, fuzz testing activities and its vulnerability management (Recommendations).
- Perform penetration testing (Black, Grey & White Box testing) activities and its vulnerability management (Recommendations).
-Manage the team members and full- fill the expectations of the management.
Skills/Experience
- Information technology with Cybersecurity specialisation. University degree in Electronics, System or Software e.g. Electronics/Software Engineering with post-graduation field experience is also acceptable.
- Embedded Security with knowledge of Industry Standards, eg. knowledge of SAE J3061, UNECE WP 29 R155 & R156, ISO/SAE AWI 21434.
- Embedded product knowledge with knowledge of MCU & SoC based systems
-Knowledge about the ECU,Embedded Linux , Autosar etc considered as a big plus
-OSCP,CEH and/ or CompTIA Security+ certifications are also considered as a big plus
- Systems engineering, architecture or electronic product development experience (understanding of embedded architecture, development, design principles)
- Embedded product knowledge with knowledge of MCU & SoC based systems, ideally, Automotive embedded products. experience in the design of embedded Cyber Security mechanisms preferred, significant knowledge in software development
- Minimum 6+ years industry experience, minimum 3+ years’ experience in security governance, security architecture development and implementation, industry accepted security technologies, and integration of security requirements into architecture components used by systems architects and developers.
- System architecture, including security by design; privacy by design or functional safety by design
- Knowledge of Automotive Vehicle Networks and general electronic automotive products is an advantage
- 5 or 6 hands-on experience in performing penetration testing, functional cyber security testing, Interface testing & fuzz testing.
- Excellent communication skills, both written and verbal, clarity, concision, able to adapt reporting to customer management expectations.
- Long term contracts (Contract/Freelance)
- Remote
- Rates dependent on experience
- Some travel may be needed dependent on customer needs
Responsibilities
- Understanding the different automotive cyber security regulations such as J3061, UNECE WP29 R155, ISO/SAE 21434 and ISO 26262.
- Performing offensive cybersecurity activities in compliance with organizations policies and applicable regulation.
- Reviewing internal requirements, Customer requirements and Specifications. Support Design Reviews, internal and with suppliers.
- Collaborating with the Product Line projects by communicating the results of the tests, e.g. identified vulnerabilities, and helping them in bringing the security to the expected level. Follow-up with the project the security fixes until the expected security level is achieved.
- Providing technical expertise to stakeholders under the scope of incident management.
- Providing technical reports related to uncovered cybersecurity defects, including the initial assessment as well as the methods, tools and entry points that attackers may use to exploit vulnerabilities or weaknesses.
- Supporting technical architecture and standards assignments.
- Following standardization rules.
- Following the evolution of the state of the art. Create, adapt or improve testing methods to identify new vulnerabilities.
- Perform functional, Interface, fuzz testing activities and its vulnerability management (Recommendations).
- Perform penetration testing (Black, Grey & White Box testing) activities and its vulnerability management (Recommendations).
-Manage the team members and full- fill the expectations of the management.
Skills/Experience
- Information technology with Cybersecurity specialisation. University degree in Electronics, System or Software e.g. Electronics/Software Engineering with post-graduation field experience is also acceptable.
- Embedded Security with knowledge of Industry Standards, eg. knowledge of SAE J3061, UNECE WP 29 R155 & R156, ISO/SAE AWI 21434.
- Embedded product knowledge with knowledge of MCU & SoC based systems
-Knowledge about the ECU,Embedded Linux , Autosar etc considered as a big plus
-OSCP,CEH and/ or CompTIA Security+ certifications are also considered as a big plus
- Systems engineering, architecture or electronic product development experience (understanding of embedded architecture, development, design principles)
- Embedded product knowledge with knowledge of MCU & SoC based systems, ideally, Automotive embedded products. experience in the design of embedded Cyber Security mechanisms preferred, significant knowledge in software development
- Minimum 6+ years industry experience, minimum 3+ years’ experience in security governance, security architecture development and implementation, industry accepted security technologies, and integration of security requirements into architecture components used by systems architects and developers.
- System architecture, including security by design; privacy by design or functional safety by design
- Knowledge of Automotive Vehicle Networks and general electronic automotive products is an advantage
- 5 or 6 hands-on experience in performing penetration testing, functional cyber security testing, Interface testing & fuzz testing.
- Excellent communication skills, both written and verbal, clarity, concision, able to adapt reporting to customer management expectations.
Apply now
Contact:
Position:
Manager
Sector:
Cyber Security
Contact Email:
Telephone: