Blog

Hi,

Title : Software Engineering  – Embedded Cyber Security Software

Location : Remote

Contract

JD:

• Required knowledge, skills, and experience:
• Bachelor’s Degree in Computer Science, Electrical Engineering, Computer Engineering, or related field
• 3+ years experience in embedded software development experience using RTOS (i.e. AUTOSAR/OSEK, LINUX/QNX/POSIX).
• 3+ years of experience in a technical cyber security or architecture or software developer position 
• 1+ years’ experience in AUTOSAR security stack configuration (SecOC/TLS/HW&SW Crypto)
• Desired experience:
• M.S. in computer science, Electrical Engineering, Computer Engineering, or related field
• 5+ years’ experience in embedded software development for security critical system.
• 3+ years’ experience in security critical software development under classical/adaptive AUTOSAR framework.
• 2+ years’ experience in AUTOSAR security stack configuration (SecOC/TLS/HW&SW Crypto).
• Familiar with Cybersecurity industrial standard (i.e. ISO 21434).
• Familiar with software change control and issue tracking tool (i.e. Jira).
• Familiar with software requirement management tool (i.e. Doors, JAMA).
• Familiar with software architecture design tool based on UML/SysML (i.e. MagicDraw, Enterprise Architect).
• Familiar with software integration test tool (i.e. CANoe, CANalyzer, CANape).
• Familiar with port/service scan tool (i.e. nmap).
• Familiar with fuzz testing tool (i.e. Defensics Networking Test Suites).
• Familiar with Common Vulnerabilities and Exposures (CVE) and appropriate methods of mitigation.
• Familiar with CI/CD workflow (i.e. Jenkins).
• Ability to work independently and collaboratively
• Strong communication and analytical skills
• Conceptual understanding of security methodologies and challenges
• Duties and responsibilities:
• Follow/implement the Cybersecurity development process per ISO 21434 and OEM specific strategy.
• Review feature/system cybersecurity requirement and other partner requirement to develop software cybersecurity requirement.
• Build software architecture design based on system design in architecture tool (i.e., Magic Draw) and allocate the software cybersecurity requirement to the architecture.
• Design, document and lead the architecture for strategic ADAS software functionality
• Development and validation of cybersecurity features including secure boot, secure software update, secure communication (CAN/Ethernet), secure logging, secure diagnostics, and secure debug.
• Perform/support software unit verification /integration testing on bench/HIL/vehicle environment.
• Build vital work product per ISO 21434 and UNECE WP.29 and collect required test evidence to build software security case.
• Support cybersecurity technical specialist to ensure ISO 21434 and UNECE WP.29 compliance including cyber security auditing.
• Support cybersecurity system engineer and feature owner to build feature cybersecurity work product including TARA and system cybersecurity requirement.
• Support system architecture and system engineer to build ECU/module system design and cybersecurity concept.
• Support system engineer and HW engineer to build hardware software interface.
• Support IT backend on ECU key/password/certificate management.
• Support ECU manufacture process related to cybersecurity material (key/password/certificate).
• Support field issue resolution and root-cause analysis.
• Supply to process improvement to achieve ASPICE compliance.
• Participate in agile development teams in applying cyber security standard processes to product development projects and programs