We are looking for Polish solutions engineers interested in working in the engineering / automotive industry to be part of an international team. The client is a shared services centre opening in 2022 in a modern office building in Krakow.
Cyber Security Engineer
Kraków- working in an international environment
- employment contract
- work on projects for key customers in the automotive industry
- benefit package (medical care, insurance, sports card)
- interface with customer on technical cybersecurity requirements and issues
- create a cybersecurity assurance case per project and the related documentation that provides the argument for the achieved degree of cybersecurity on their project
- perform cybersecurity risk assessments and threat modelling within a product scope
- analyse and determine safety, operational and privacy issues identified in a risk analysis
- where there are safety impacts, work with the Functional Safety team to find solutions that do not compromise safety or security
- suggest countermeasures appropriate to the project given the technical constraints or operational limitations
- create and maintain a knowledge database of typical assets, threats and attack paths for our product portfolio to leverage re-use
- create and maintain solutions to manage cybersecurity risks
- drive cybersecurity feature development and provides technical support for hardware and software teams
- evaluate new tools (Threat Analysis tool)
- follow and contribute to the secure development lifecycle at BorgWarner Support the roll-out of processes and procedures compliant with latest cybersecurity standards and regulations
- 2+ years of experience in an embedded cybersecurity position or 4+ years in an embedded systems/software competency
- good understanding of formal risk assessment and management
- experience in the automotive or transportation domain
- experience with requirements engineering, ability to navigate through multiple customer specifications, standards and policies
- familiarity with cryptography and cybersecurity concepts such as defense in depth, access control models, memory protection, secure boot, Secure Coding, public key infrastructure (PKI)
- understanding of multi-core embedded microcontrollers that use HTAs (hardware trust anchors) or HSMs (hardware security modules)
- understanding of cybersecurity specific testing such as penetration and fuzz testing
- strong communication and analytical skills
- english min b2
Agencja zatrudnienia – nr wpisu 47
