Lead Engineer- Software and Cyber Security

1. Key Tasks and Deliverables

• Lead end‑to‑end cybersecurity engineering for safety‑critical powertrain ECUs (Engine ECU, VCU, MCU, BMS, HCU, OCDC) across ICE, Hybrid, and Electric platforms.
• Act as Cybersecurity Technical Owner for assigned powertrain programs, accountable for design robustness, compliance, and SOP readiness.
• Define, review, and approve secure ECU architectures, including secure boot, secure flashing, secure communication, OTA/FOTA security, HSM integration, and key lifecycle management.
• Perform and lead Threat Analysis and Risk Assessment (TARA) in compliance with ISO/SAE 21434, ensuring traceability to cybersecurity goals and mitigations.
• Translate cybersecurity threats into clear system and software security requirements aligned with vehicle and powertrain performance goals.
• Ensure cross‑functional execution by coordinating cybersecurity activities with system, software, hardware, validation, vehicle integration, and supplier teams.
• Lead cybersecurity design and compliance reviews with internal stakeholders, vehicle programs, and Tier‑1 suppliers.
• Oversee vulnerability management, incident response, and post‑SOP cybersecurity monitoring for powertrain ECUs.
• Define and execute penetration testing, fuzz testing, and robustness validation to close vulnerabilities during development and validation phases.

2. Critical Must‑Have Deliverables

• ISO/SAE 21434‑compliant cybersecurity lifecycle execution for powertrain ECUs.
• UNECE R155 / R156 (AIS 189 / AIS 190) evidence readiness supporting vehicle type approval.
• Cyber‑secure ECU architectures protecting torque, propulsion, charging, and energy management functions.
• Demonstrated alignment between cybersecurity and functional safety (ISO 26262) without system trade‑offs.
• Zero critical cybersecurity non‑conformities at SOP and regulatory audits.

3. Good‑to‑Have Deliverables

• Experience supporting global OEM vehicle cybersecurity audits and homologation activities.
• Contribution to cybersecurity strategy definition for next‑generation powertrain platforms.
• Automation of vulnerability scanning, penetration testing, or compliance reporting.
• Exposure to EV‑specific cybersecurity challenges (BMS, charging interfaces, energy management systems).

• 10–12+ years of experience in automotive embedded systems or powertrain ECU development.
• 3–6+ years of hands‑on automotive cybersecurity engineering experience, preferably in OEM or Tier‑1 environments.
• Proven experience leading multi‑ECU cybersecurity implementations across full V‑cycle.

Competencies and Skills

Functional Competencies

• Powertrain control systems and real‑time embedded software architectures.
• ECU‑level cybersecurity controls: secure boot, HSM, secure diagnostics, secure flashing.
• Automotive communication protocols: CAN, CAN‑FD, Automotive Ethernet, UDS.
• Threat modeling, vulnerability analysis, and cybersecurity risk mitigation.
• OTA/FOTA security and backend interaction models.

Tools and Techniques Used

• Threat modeling frameworks aligned to ISO/SAE 21434.
• Penetration testing and fuzz testing tools for embedded ECUs.
• Cryptographic key management, PKI, and certificate handling tools.

Behavioral Competencies

• Strong technical leadership and ownership mindset in safety‑critical systems.
• Risk‑based decision making under regulatory and program constraints.
• Clear, confident cross‑functional communication with engineering, vehicle teams, and suppliers.
• Mentorship capability to guide and review work of cybersecurity engineers.