Product Cybersecurity Engineer - Intermediate

The Bartech Group • Full-time • Remote (Canada, Ontario, Windsor) • 1w ago

If you are an experienced Product Cybersecurity Engineer looking for a position with a leading company, Bartech can help! We are a leading staffing firm, and our clients include some over the nation’s biggest companies. This is a 12-month contract position; however, it is not uncommon for assignments to transition into permanent positions with our client companies. If you have the background we are looking for, and you are interested in an opportunity to get your foot in the door with leading company, we want to talk with you!

Product Cybersecurity Engineer in Windsor, Ontario (REMOTE)

TRAVEL - Driver’s license is a must have; Drive to CTC in Auburn Hills, MI area on an advanced planned / pre-scheduled basis (If possible)

JOB DESCRIPTION
The Cybersecurity engineer will design cybersecurity measures and define cybersecurity specifications for organization’s Vehicle systems, ECUs, and Applications to reasonably protect road users from new cyber-threats arising from fast evolving vehicle functions and features. This position will monitor and check the compliance of cybersecurity controls implemented in the organization’s products during the entire product development lifecycle. This position will support suppliers to better understand and implement the organization’s cybersecurity requirements.

BASIC QUALIFICATIONS

Bachelors from EE, Math, Computer Science, or other scientific degrees with 3 years of experience around software development or ECU development
Minimum of 3 years of related experience (Such as: security research, system exploitation, cybersecurity engineering); Position level will be dependent on level of education, years of experience, knowledge, skills, and abilities
Professional security certifications are desirable, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or other similar security related certifications
Deep understanding of Cybersecurity controls applicable to Embedded Systems and Electronic Control Units (ECU’s)
Threat and Risk Assessment awareness or experience (Risk = Impact X Feasibility) where Impacts are viewed from the view of the Road User on Safety, Operational, Financial and Privacy.
Awareness/ability to understand vulnerabilities in SW and HW for how these affect the vehicle in Design phase and Post-Production Phase.
Independent thinker and doer. Self-motivated to identify issues and find ways to solve them within the group (solutions are typically an activity for the group to address).
TECHNICAL REQUIREMENTS
Good knowledge of Connected Vehicle Cybersecurity
Good knowledge of common security patterns (e.g., authentication, authorization, separation of privileges, sandboxing, need to know, separation of duties, …)
Good knowledge of security protocols (e.g., TLS, SSH, …)
Good Knowledge of X.509 digital certificate standard and Public Key Infrastructure management.
Good Knowledge of symmetric and asymmetric cryptographic algorithms (e.g., AES, RSA, ECC)
Good knowledge of automotive operating systems (AutoSAR Classic and Adaptive, QNX, Linux, Android, others) and middleware
Basic knowledge of Connected Application integrations (Legato App framework, Automotive Android, QNX)
Basic knowledge of, C/C++, Java, Python, Kotlin programming language.
Basic knowledge of scripting language (e.g., JScript, bash, …).
Basic knowledge of UML language.
Basic knowledge of DOORs
Basic knowledge of software engineering
RESPONSIBILITIES
Perform threat analysis including impact and feasibility to identify gaps in cybersecurity controls for vehicle systems, ECU’s, and Applications
Capable of conceptualizing, defining, designing, and implementing security systems and architectures
Elicit cybersecurity requirements to provide system requirements to satisfy customers aligned with regulations and corporate cybersecurity policy.
Review the supplier design and implementation to ensure that security controls are reasonably planned for implementation according to the organization’s requirements.
Understand and interact with key stakeholders to ensure the consistent application of policies and standards across all technology projects, systems, and services
Provide clear risk mitigating directives for Connected vehicles, systems, and applications
Respond to supplier inquiries about requirements
Performing assessments and analyzing threats and attacks
Work with DRE’s and Application owners to mitigate risk
TECHNICAL SKILLS PREFERRED
Basic knowledge of Connected Vehicle experience
Basic knowledge of Firmware Over-the-Air (FOTA) operations
Good knowledge of ISO 21434: Road Vehicle - Cybersecurity Engineering.
Good knowledge of Service Oriented Architecture design pattern and paradigm.
Ability to work collaboratively in multicultural teams.
Strong skills in technical writing and presenting.
Good self-organization and analytical skills.
Good proficiency in English.
When you join The Bartech Group you launch a career. The Bartech Group, one of North America's largest and fastest-growing staffing firms, continues to elevate the staffing industry to a higher level of thinking. Bartech Enterprise Staffing specializes in temporary and direct placement of Engineering, IT, Technical, Finance & Accounting, and Professional staff.

Bartech values diversity and inclusion in its workforce. Candidates that are legally eligible to work in Canada are invited to apply. Candidates must be legally eligible to work in Canada. We thank all applicants, but only suitable applicants will be contacted. If you are currently in a part time, project, temp work, please advise us with your availability of start date.

Our client is committed to providing accommodation for people with accessibility needs due to disabilities in all aspects of the hiring process. If you request an accommodation, our client will work with you to meet your accessibility needs due to disability

IND_CA_2