Cybersecurity System and Requirements Engineering

SHAPE THE FUTURE OF MOBILITY FROM DAY ONE.

This position is part of our Advanced Safety & User Experience segment.

Summary:

The Cybersecurity System and Requirements Engineer is responsible for overseeing cybersecurity between the software/hardware and systems teams on cybersecurity issues.  The cybersecurity system and requirements engineer works with the product and core teams in translating the product requirements with cybersecurity impacts into the software/hardware requirements and architecture.

Responsibilities:

• Responsible for the cybersecurity plans and documents
• Supports the Product Systems Cybersecurity team
• Coordinates cybersecurity issues between product, manufacturing, and testing software
• Mitigate cybersecurity risks
• Consultant for cybersecurity analysis and patching of open source or third-party software
• Provides guidance so secure software is developed and unit tested, including static and dynamic code analysis, fuzz testing, and compliance to standards

Must Haves (Basic Qualifications):

• Bachelor’s degree in engineering discipline (computer engineering, electrical engineering, or related field of study)

• 3+ years of experience in Automotive Industry or Consumer Electronics

• Bilingual – proficient in English speaking/reading/writing
• Interpersonal skills, strong analytical skills, strong problem-solving abilities, and a positive approach to challenge
• Cross functional interests, ambitious and self-driven. Adaptive, comfortable with ambiguity
• Ability to effective manage several projects at once
• Experience with C, assembly, and/or similar low-level development

• Knowledge of embedded systems development including networking, cryptography, and resource management and experience designing customizations to those platforms
• Experience designing solutions that meet or exceed automotive-relevant cybersecurity standards/regulations such as Automotive SPICE (Software Performance Improvement and Capability dEtermination), R155/R156, and/or the upcoming ISO 21434
• Experience leveraging hardware security module, secure hardware extension, and/or similar security technologies
• Strong understanding of cyber risk and cyber intelligence and capable of informing leadership of cybersecurity developments and potential issues from business partnerships/engagements
• Interest and/or experience with bug bounties, capture-the-flag competitions, etc.

Nice to Haves (Preferred Qualifications):

• Master’s degree in engineering discipline (computer engineering, electrical engineering, or related field of study)
• 5+ years’ experience in the following areas –
  • Programming in C and/or assembly
  • Developing with automotive hardware and architectures (e.g., TriCore™)
  • Developing for FPGAs such as Xilinx, NXP, etc. and using their associated tool suites such as Vivado, etc.
• One or more relevant cybersecurity certifications such as CISSP, GDSA, etc.
• Developing systems utilizing automotive communication systems (CAN, CAN-FD, automotive Ethernet, etc.)
• Developing solutions using automotive operating systems such as SROS2 and software communications middleware DDS
• Familiarity with Bluetooth, NFC, and/or Wi-Fi implementations and communications
• Knowledge of hardware description languages (Verilog, VHDL, etc.)
• Familiarity with circuit schematics, hardware data sheets, logic design and review/suggest PCB (Printed Circuit Board) layout improvements to enhance security
• Experience designing software/hardware interfaces such as device drivers and board support packages (BSPs)
• Experience deploying AUTOSAR-compliant embedded platforms
• Experience directing cross-functional teams to implement comprehensive cyber resilient solutions
• Experience performing threat modelling and design reviews to assess security implications and requirements for introduction of new technologies
• Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions
• Experience in customer discussions and technical design reviews and supporting cross discipline activities
• Experience conducting code reviews and usage of version control systems
• Experience with investigations and forensics activities and interfacing with members of a security operations center (SOC) and/or red team
• Experience with traditional network designs (e.g., IPv4, Ethernet, etc.) and the ability to translate that experience to future secure vehicle networks

Aptiv Rewards and Advantages:

• Competitive compensation with bonus potential
• Learning and development opportunities
• Discount programs with various manufacturers and retailers
• Recognition for innovation and excellence
• Opportunities to give back to the community
• Meaningful work that makes a difference in the world
• Relocation assistance may be available
• Tuition Reimbursement
• Paid Time Off (Vacation, Parental leave, etc.)

About Advanced Safety & User Experience

Advanced Safety & User Experience encompasses our deep expertise in centralized computing platforms, advanced safety systems and automated driving, while acknowledging the growth in areas that enrich the in-vehicle experience.

#LI-ME1

Privacy Notice - Active Candidates: https://www.aptiv.com/privacy-notice-active-candidates

Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law.