REQ ID: 122094
JOB TITLE: Cyber Security Lead Engineer
SALARY: £52,000 - £58,000
POSTING END DATE: 07/03/2024
LOCATION: Gaydon
We’re re-examining our vehicles and what a vehicle means in the emerging world of automation, connectedness, electrification and the shared economy. New ideas, new technology, and new approaches to mobility are our business. Join a team of next generation thinkers.
WHAT TO EXPECT
Cyber Security is a fast paced and dynamic area within the Automotive Industry. You will be an elemental part of the Product Engineering teams delivering JLR products in a secure way always, looking at improving the Cyber Security posture and responding to emergent threats.
In your role as a Cyber Security Engineer you will be responsible for creating, reviewing, assessing and signing off the Cyber Security artefacts described in the Cyber Security Management System in one way or another. You will support the Product engineering teams to walk through the Cyber Security Compliance steps that will lead to secure and reliable products as well as to the consolidation of the type approval pack.
Responsibilities:
- Assess the Cyber Security Relevance of JLR products.
- Support Distributed Interface Agreements with Tier 1s.
- Create and review Cyber Security Plans, Item definitions, TARAs, Security Concepts.
- Review the Cyber Security controls and test results allocated to systems and subsystems.
- Build/review Vulnerability reports.
- Support Vulnerabilities resolution.
- Define/review pen test scope and plans.
- Author System/vehicle assurance cases. Exceptionally for subsystems too.
- Author System/vehicle assessment reports. Exceptionally for subsystems too.
- Support the sign off all the artefacts above.
- Report Risks and define a proper Risk management path for those.
- Review subsystem Production Control Plan and Post development Release agreements.
- Support VSOC to triage and resolve incidents/vulnerabilities.
- Support type approval activities.
WHAT YOU’LL NEED
- Practical experience performing TARA, security concepts and other Cyber security artefacts mentioned in ISO 21434.
- Detailed understanding of the application of UNECE.R155 and ISO21434
- Knowledge of Cyber Security technologies used to protect embedded systems.
- Knowledge of, at least one or more of the automotive technologies: in-vehicle networks, safety critical embedded SW and HW, complex onboard computers, vehicle connectivity, etc.
- A demonstrable knowledge of high integrity systems, and secure software and / or hardware design principles, in an embedded environment.
- Experience working with suppliers.
- An academic qualification in Cyber Security or equivalent experience.
SO WHY US?
Bring all this to the home of premium innovation, and you’ll find the opportunities to further your career with a world-class team, a discounted car purchase and lease scheme for you and your family, membership of a competitive pension plan and performance related bonus scheme. All this and more makes JLR the perfect place to continue your journey.
This role may offer the opportunity for hybrid working where you can split your time between working from home and in the office. At JLR, hybrid working is a voluntary, non-contractual arrangement providing employees with more choice and flexibility around how, when and where they work, if suitable for their role. Further details can be discussed with the Hiring Manager at interview stage.
JLR is committed to equal opportunity for all.