Automotive Threat Researcher

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, world-leading global threat research and intelligence, and continuous innovation, our cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints

With 7,000 employees across 65 countries, and the world’s most advanced global threat research and intelligence, Trend Micro enables organizations to simplify and secure their connected world. TrendMicro.com

Position Summary:
With the advent of the 5G era, cloud-based V2X brings exciting new possibilities. A vehicle is not only a computer with four wheels but also a mobile data center! Between 2018 and 2022, 125 million cars with embedded connected functions were sold globally, and hundreds of millions of “connected cars” joined the ecosystem, bringing new challenges and security breaches. It is estimated that by 2030, there will be 700 million connected cars globally and 90 million self-driving cars!

All automakers need to adhere to either regulations or comply with cybersecurity standards, be it an OEM or a Supplier. Trend Micro and VicOne aims to assist those who want to enter the Automotive industry to obtain information security and establish information security certification standards. To embrace the new business opportunities, we are looking to hire a passionate individual to join and be inspired to go onto a new journey while exploring the Automotive Security Market in depth!

Responsibilities:

• Conduct vulnerability research on QNX, AGL, Android Automotive, or related automotive operating systems.

• Conduct vulnerability research on applications and protocols in the automotive industry

• Conduct vulnerability research on automotive industry hardware

• Conduct research on future AI-related threats in the automotive industry

• Monitor and track media news and events daily regarding automotive vulnerability cases.

• Publish CVEs and contribute to the automotive cybersecurity community.

• Speak at security and automotive conferences.

• Publish blogs or write papers on automotive cybersecurity topics.

• Respond to media inquiries regarding automotive security.

• Conduct research on automotive-specific cybersecurity threats, including but not limited to ECU (Electronic Control Unit), IVI (In-Vehicle Infotainment), TCU (Telematics Control Unit), and CAN (Controller Area Network) bus vulnerabilities.

• Investigate and address security vulnerabilities related to OTA (Over-the-Air) updates and full-spectrum vehicle communication.

• Develop and implement security protocols and measures for automotive systems.

• Collaborate with automotive manufacturers and suppliers to enhance security standards.

• Stay updated on the latest trends and advancements in automotive cybersecurity.

Qualifications:

• Bachelor’s degree or higher in Computer Science or equivalent work experience.

• Proven track record of binary-type CVEs with high CVSS scores listed on the NVD site.

• Proficiency in at least one of the following programming languages: C, C++, Python, or shell script.

• Expertise in at least one of the following operating systems: Windows, Linux, macOS, or RTOS.

• Experience in Linux OS vulnerability research is a plus.

• IoT hardware hacking experience is a plus.

• ECU vulnerability research experience is a significant plus.

• IVI/TCU vulnerability research experience is a significant plus.

• CAN bus vulnerability research experience is a significant plus.

• Radio signal vulnerability research experience is a significant plus.

• OTA full-spectrum vulnerability research experience is a significant plus.

Join us in shaping the future of automotive cybersecurity and help create a safer and more secure driving experience for everyone. Apply now and be part of the exciting journey in the evolving landscape of connected and autonomous vehicles!

Trend Micro, Inc. is committed to fair and equitable compensation practices. The salary range for this role is USD $150,000.00 - $180,000.00. A candidate’s final compensation for this position will be determined by various factors to include, but not limited to relevant work experience, skills, and certifications.

#LI-LM1

At Trend Micro, we embrace change, empower people, and encourage innovation in a connected world. Our diversity and multicultural workforce are key contributing factors to our success across the globe. Trend Micro provides equal employment opportunity for all applicants and employees. Trend Micro does not unlawfully discriminate on the basis of race, color, religion, sex, pregnancy and childbirth or related medical conditions, national origin, ancestry, age, physical or mental disability, medical condition, family care leave status, veteran status, marital status, sexual orientation, or gender identity.