As part of Edge & System Engineering team, NTT DATA is looking for an Automotive Cyber Security Engineer.
In Particular, The Selected Resource Will Join The SYS/SW Engineering Unit And Will Be Employed On The Design And Development Of Several Vehicle Electronic Control Units With The Following Responsibilities:
- Develop and implement comprehensive cybersecurity strategies for automotive systems and networks, focusing on protecting vehicles from cyber threats, unauthorized access, and data breaches.
- Conduct thorough security assessments and penetration testing on automotive software, hardware, and communication protocols (CAN, LIN, Ethernet, etc.) to identify vulnerabilities and security risks.
- Design and enforce security protocols, policies, and procedures to ensure the integrity, confidentiality, and availability of automotive data and systems.
- Collaborate with engineering and development teams to integrate cybersecurity measures into the design and development phases of automotive software and systems.
- Provide expertise in cryptography, secure communication, and data protection techniques suitable for embedded and automotive environments.
- Lead incident response and forensic analysis activities in the event of a cybersecurity incident, including the investigation of security breaches and the implementation of corrective actions to prevent future incidents.
- Educate and train engineering teams and stakeholders on cybersecurity best practices, emerging threats, and risk mitigation strategies.
Qualifications:
- Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field, with a strong focus on cybersecurity.
- Proven experience in cybersecurity, with specific expertise in automotive or embedded systems security.
- Deep understanding of automotive communication protocols and network architectures, along with experience in penetration testing and vulnerability assessment tools and techniques.
- Knowledge of cybersecurity frameworks and standards relevant to the automotive industry, such as ISO/SAE 21434, and experience in implementing security controls to comply with these standards.
- Proficiency in encryption technologies, secure software development practices, and authentication mechanisms.
- Strong analytical skills and the ability to identify and resolve complex security issues in a fast-paced and dynamic environment.
- Excellent communication and collaboration skills, with the capacity to work effectively across multidisciplinary teams and to convey complex security concepts to non-technical stakeholders.
- Certifications in cybersecurity (e.g., CISSP, CEH, CISM) are highly desirable.
Mandatory Skills :
- Background in automotive bus systems and network protocol: CAN, CAN FD, ethernet, UDS, TCP, UDP, ...
- Experience with SW CANanalyzer and/or equivalent tools and related Vehicle Communication Interface (e.g. CanCASE for Vector Tools)
- Experience with scripting language: python, CAPL.
- Experience in writing of automotive functional test cases (for ECUs, vehicle, manufacturing and customer service process verification) with Polarion and manual tests execution on site presence
- Support the manager for the test plan agreement with ECU supplier and collect the related report
Nice To Have Skills :
- Experience with Android OS
- Experience with automotive tools: wireshark, OpenVAS, CVE tools, fuzzing
- Experience with scripting language: bash
- Knowledge of Automotive ASPICE process with focus on: system requirements and verification phases and related traceability
- Scripts for automated tests execution
- SW version control systems tools ( e.g. GIT)
- Experience with openssl tools for : X.509 certificate management, Asymmetric/Symmetric cryptographic algorithms, MAC, SHA."
