Cyber Security Engineer - Automotive Electronics Product (5-9 yrs)

Educational Qualification :

- BE/B.Tech (Electrical/Electronics/ECE/EEE/CS/Mechatronics) full time from reputed institution.

- ME/M Tech/MS in the relevant field / area will be nice to have.

Experience(in years) :

- 6+ Years relevant experience in the field of Automotive Electronics product development and 1+ Years in Cyber Security implementation and testing

Keywords : System Architecture, OTA/FOTA Software Update, Security components (SecOC, CSM), Public key Infrastructure (PKI), Key management, Digital certificates and digital signatures, Crypto material knowledge of Keys, random number generations, GPS, CAN, UDS, Vehicle Diagnostic, Security fundamentals -authentication, authorization, and symmetric, asymmetric cryptography, HSM, SHE modules.

Product Experience & Technical Expertise :

1. Good to understand cryptography & PKI technology - Hash, Symmetric/Asymmetric encryption | RSA-X509, SSL, TLS/DTLS, PKCS, key management, certificate implementation

2. Experience in firmware reverse engineering and device security hardening

3. Knowledge of system development and handling of crypto material knowledge of Keys, random number generation.

4. Security fundamentals - authentication, authorization, and symmetric, asymmetric cryptography,HSM, SHE modules.

5. Knowledge & hands on CERT C guidelines.

6. Understanding on Functional Safety activities ((ISO-26262-2, Part-3, Part-4, Part-5, and Part 6)/UN-155)

7. Basic understanding of AUTOSAR security components like SecOC, CSM, CDD

8. Strong software and Hardware debugging skills, shall be able to Communicate and problem solve

9. Understanding of Device identity and integrity controls-On-Board/Off-Board key generation, secure boot, code signing, OTA/FOTA Software Update, device life-cycle management (enrollment, provisioning, activation, suspend, revoke, re-provision/terminate)

10. Understanding of Vulnerability Analysis and Penetration testing of TCP/IP supported Automotive and embedded products.

11. Understanding of secure libraries (eg. bootloader etc.), Embedded Linux and RTOS

12. Familiarity with device security concepts such as Secure boot (using HSM, SHE, TPM, TEE etc.)

13. Good understanding of automotive electrical architecture & diagnostic protocols. (UDS, OBD, KWP)

14. Comfortable in reading electronics component datasheets, hardware schematics. Understanding in executing vehicle level cyber security attacks - Grey box testing (Command injection, data corruption, back doors. Man in the middle attack, sensor manipulation, network overloading/etc.)

15. Understanding of Data and system security application whitelisting, run-time system integrity check,anomaly detection, message signing, dynamic access control

16. Experience on Application Lifecycle Management (ALM) tools for ensuring SW quality is desirable

17. Knowledge of Model based system engineering will be good add-on.