Job Purpose
The Product Security Manager ensures CEER vehicle programs comply with automotive cybersecurity regulations and standards, leading technical alignment with internal and external stakeholders.
Key Responsibilities
- Cybersecurity Architecture: Design secure vehicle system architectures ensuring integrity, confidentiality, and availability.
- Threat & Risk Management: Perform threat analysis, risk assessments, and define mitigation strategies.
- Security Testing: Lead penetration testing, vulnerability assessments, and code reviews; support remediation.
- Secure Communication: Implement secure in-vehicle network protocols (e.g., CAN, Ethernet).
- Incident Response: Manage incident response plans, investigate issues, and implement corrective actions.
- Compliance: Ensure adherence to standards (e.g., ISO 21434, UNECE R155) and support certification efforts.
- Collaboration: Integrate cybersecurity across the product lifecycle with engineering teams and stakeholders.
- Documentation & Reporting: Maintain compliance documentation; review designs and address gaps.
- Training: Promote cybersecurity awareness, best practices, and secure coding guidance.
Job Requirements
Education
- Master’s in Electrical/Computer Engineering (or equivalent postgraduate qualification).
Experience
- 7+ years in automotive cybersecurity engineering.
Technical Skills
- Strong knowledge of automotive systems, cybersecurity principles, and standards.
- Experience with threat modeling, risk assessment, and vulnerability analysis.
- Programming: C, C++, Python.
- In-vehicle networks: CAN, Ethernet.
- Secure coding and software security best practices.
Certifications (Preferred)
- Automotive SPICE, ISO 21434, UNECE R155.
Core Competencies
- Strong analytical and problem-solving skills.
- Ability to translate requirements into actionable solutions.
- Detail-oriented with strong documentation discipline.
- Effective communication and cross-functional collaboration.
- Ability to manage multiple priorities in fast-paced environments.
