CyberSecurity Manager – Process Development

At Magna, our groups work together to deliver advancements in mobility to build a better world for everyone and everything. Magna’s ADAS technologies are shaping an autonomous future and improving lives.

Full autonomy is coming. But to create the technology which will bring it into view, you need the desire and ability to adapt complete ADAS systems or modular solutions to any vehicle, for any mobility need.

Magna’s electronics solutions connect OEMs to their customers with features that improve their lives. It’s our expertise across the entire vehicle, key strategic partnerships and culture of innovation that allow us to make our industry-leading technologies road-ready. And it is how we’ll continue to build a safer, smarter and more connected mobility experience for all people.

What you can expect:

• Responsible for product security management process definition including activities, guidelines, work products and associated templates
• Ensure product security process integration in other process areas like in System Development, SW Development, V&V Manufacturing, Supplier Management, Change Management considering the product security life cycle
• Collaborate with cross functional teams.
• Maintain and continuously improve global product security processes
• Support teams with process roll out and application
• Create and maintain internal product security standard and policy
• Stay current with global cyber security regulations and standards (UNECE R155 ; ISO/SAE 21434, Chinese Security Regulations; EU Cyber Resilience Act:…) and ensure compliance to those relevant to Magna Electronics
• Organize and support periodic external audit of Cyber Security Process (every 3 years)
• Interface with SW process team for SUMS

Other Responsibilities:

• Report progress and KPI to Product Security Global organization
• Active participation in user community meeting broadcasts (related to Process)
• Understand and focus on interrelationships between disciplines (e.g. manufacturing, serial life, supplier management, SW tools, etc.)
• Promote security culture

What you'll bring: 

• Systematic process skills: Needed for structuring and defining generic security processes across different disciplines
• Systems Engineering knowledge: Understanding interconnection between various engineering domains and their contribution to secure products
• Strong communication skills: Ability to work across engineering disciplines as a common stakeholder
• Team player: Understanding all needs and working towards the optimal solution.
• Education: You're holding a Bachelor´s or Master´s degree in Information Assurance, Computer Science, Cybersecurity/Cyber Policy, or related field of study or equivalent work experience
• Certified ISO/SAE 21434 desired

Personal Characteristics Enabling Success:

• Leading skills for driving joined process activities and guiding different team setup
• Systematic, process mindset
• Good networking capabilities

Previous Experience: 5+ years of direct cyber security experience. Experience in resource constraint embedded systems

It is a plus:

• Several years of experience in the automotive industry
  
• Confident knowledge in the use of ISO 21434 in the context of embedded systems development
  
• Experience in process definition work

What we offer:

• Flexible working hours and remote work
• Health programs, sports and team events
• An extensive training program and exciting internal development opportunities
• Meal allowance

Additional Information

Awareness. Unity. Empowerment.

At Magna, we believe that a diverse workforce is critical to our success. That’s why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email to comply with GDPR requirements and your local Data Privacy Law.