Cybersecurity Engineer

Our Electronics Tech Center in Brasov focuses on the innovation, development and testing of electronic applications in the Safety area (Active Seatbelts & Steering Wheels), coordinating end-to-end projects for OEMs. We are now looking for a Cybersecurity Engineer to join our growing team. The Cybersecurity Engineer is in charge of deploying cybersecurity activities (ISO/SAE 21434) and associated work products in context of applicable application for the automotive domain. 

What You'll Do 

Deploy Cybersecurity activities in accordance with the V-cycle development process and the product requirements (risk analysis) during the product development: 

• Collect technical needs for targeted product 

• Create and update Cybersecurity plan 

• Support system team in Item definition 

• Manage Threat Analysis and Risk Assessment (TARA) including CAL quotation (if applicable) 

• Define and/or assess Cybersecurity Goals 

• Harmonize customer cybersecurity requirements and internal product requirements. 

• Development of Functional Cybersecurity Concept and associated requirements 

• Development of Technical Cybersecurity Concept and associated requirements 

• Traceability of customer needs. 

• Participate to system architecture definition for cybersecurity needs. 

• Understand and focus on interrelationships between elements of system 

• Support DFMECA (Function, Component and SW) 

• Support FTA (qualitative and quantitative) and associated summary report 

• Support Project Manager or Change Leader for all cybersecurity needs 

• Create and maintain Cybersecurity case 

• Participate to reviews from design activities 

• Evaluate cybersecurity aspects of the design (system, HW and SW) 

• Check cybersecurity requirements are implemented and verified according to requested CAL (if applicable) 

Apply cybersecurity engineering methods by using engineering tools: 

• For specifications, design and architecture (DOORS, Enterprise architect, Item toolkits, Excel) 

• For issues: Technical Evolution Demand (or equivalent), management of configuration items. 

• Overall fulfilment of the role with respect to industry standards such as ISO 21434 (according to the V-Cycle) 

Take part in the evaluation of new method of development: 

• Main component (IC): specification of technical characteristics of component 

• Micro-controller: specification of technical characteristics of μC 

• Development tools: Requirement management tools, architecture development tool, test tools 

• Methods: formal specification, functional analysis, requirement verification 

• Quality tools: respect of A-SPICE, CMMI, ISO26262, Autoliv checklists 

Support in Cybersecurity Development Follow-up for the Projects 

• Evaluating the cybersecurity workload (PBS, WBS) 

• Establishing a detailed progress cybersecurity task report with the referring product design leader / serial life product engineering leader 

• Supporting review of customer CIA and establishing supplier CIA 

• Establishing development plan for Cybersecurity activities (Cybersecurity plan) 

• Identifying corrective actions and directing them to the referring product engineering leader for design progress meetings. 

• Collecting data for the cybersecurity indicators update. 

• Supporting in definition of cybersecurity related tests. 

Ensure the Consistency of Cybersecurity Work-products Development 

• Create and maintain documentation (according to Autoliv Cybersecurity process) 

• Participating to internal and external reviews 

• Supporting technical risk analysis 

• Supporting supplier agreement contract 

• Collecting data to provide indicators 

• Integrating and releasing cybersecurity deliveries 

• Bringing support to the system, software and hardware designers to handle issues 

• Participating to traceability matrix creation 

• Participating to system development audits 

• Participating to Change Control Board 

Deploy Cybersecurity activities in accordance with ISO/SAE 21434 standard during post-production phase, i.e. from SoP to Cybersecurity end-of-service: 

• Manage cybersecurity vulnerabilities, survey and collect potential cybersecurity vulnerabilities 

• Monitor incident response 

• Identify and deploy corrective actions when deemed required according to change management process 

Provide support in RFQ phase and customer presentations: 

• In term of feasibility, technical aspects for products and process 

• For next-generation embedded Safety products, from the cybersecurity engineering point of view 

Train people (design team, process manufacturing, industrialization department…) 

Work with customers, both internal and external, as cybersecurity expert 

Work with product development teams and sales team to ensure correct understanding and implementation of requirements 

What You'll Bring 

Background in cybersecurity engineering with relevant work experience in development of embedded real-time systems (Cybersecurity conception) 

• ISO 21434 - Automotive Cybersecurity 

• System engineering 

• Hardware and Software knowledge in embedded projects 

• Development method for embedded system 

• Development quality constraints (SFEA / FMEA / FTA) 

• Encryption algorithm implementation and numerical computation 

• DOORS