Cyber Security Engineer
Hernshead Recruitment
About this position:
We currently have a fantastic opportunity to join a world famous Automotive Brand as a Cyber Security Engineer to be responsible for production programmes. You will work closely with Functional Safety engineers, the Model Based Systems team, vehicle teams, suppliers, I.T, production, and service
to ensure the Cyber Security Lifecycle is met.
Job Responsibilities:
- Interface with cross-functional teams on Cyber Security matters across the entire V-Model:
o Process development
o Concept design
o System Design
o Agreement and maintenance of CIA’s with worldwide suppliers
o Generation of security arguments
o Continuous improvement activities
o In service support activities - Application areas include but are not limited to engine management systems, chassis systems
such as ABS, electronic suspension & body control modules, autonomous riding systems &
functional safety - Promote Cyber Security across the Business
- Deliver Cyber Security on Triumph projects, including:
o Item Definitions
o TARA’s
o Cyber Security Functional Concept (Security Goals and Functional Level
Requirements)
o Cyber Security Technical Concept (Attack Trees, Security Mechanisms Technical
Level requirements)
o Distributed Cyber Security activities - Develop and follow best practice working procedures to support Cyber Security activities
Experience Required:
- BEng or MEng in Electrical / Electronic engineering, Systems Engineering or Cyber Security
Engineering, and proven relevant experience - Evidence of ISO21434 (or similar) training
- Evidence of understanding of the System V-lifecycle
- Evidence of the ability to write effective unambiguous requirements at both functional and technical levels
- Evidence of the ability to understand architecture designs defined using Model Based System Engineering (MBSE)
- Evidence of the ability to perform Threat Analysis & Risk Assessments
- Evidence of the ability to understand/develop embedded electrical/electronic system security architectures and work with systems team to integrate into overall systems
architecture - Evidence of the ability to understand the different security/design measure(s) that are available to protect electrical/electronic embedded system security architectures
- Evidence of the ability to understand at a high-level communication protocol(s) (e.g. CAN) and to understand the security/design approaches available to protect these communications
- Use of tools for threat identification, analyses, requirements management, change & impact management