Cyber Security - Gaydon, United Kingdom - Jaguar Land Rover

Description

Gaydon

We're re-examining our vehicles and what a vehicle means in the emerging world of automation, connectedness, electrification and the shared economy. New ideas, new technology, and new approaches to mobility are our business. Join a team of next generation thinkers.

WHAT TO EXPECT

Cyber Security is a fast paced and dynamic area within the Automotive Industry. You will be an elemental part of the Product Engineering teams delivering JLR products in a secure way always looking at improving the Cyber Security posture and responding to emergent threats.

In your role as a Cyber Security Engineer you will be responsible to create, review, assess and/or sign off the Cyber Security artefacts described in the Cyber Security Management System in one way or another. You will support the Product engineering teams to walk through the Cyber Security Compliance steps that will lead to secure and reliable products as well as to the consolidation of the type approval pack.

Responsibilities:

Assess the Cyber Security Relevance of JLR products.

Support Distributed Interface Agreements with Tier 1s.

Create and review Cyber Security Plans, Item definitions, TARAs, Security Concepts.

Review the Cyber Security controls and test results allocated to systems and subsystems.

Build/review Vulnerability reports.

Support Vulnerabilities resolution.

Define/review pen test scope and plans.

Author System/vehicle assurance cases. Exceptionally for subsystems too.

Author System/vehicle assessment reports. Exceptionally for subsystems too.

Support the sign off all the artefacts above.

Report Risks and define a proper Risk management path for those.

Review subsystem Production Control Plan and Post development Release agreements.

Support VSOC to triage and resolve incidents/vulnerabilities.

Support type approval activities.

WHAT YOU'LL NEED

As the Cyber Security Engineer you will need to hold a relevant formal qualification such as degree or time served apprenticeship within Cyber Security

Familiar with TARA, security concepts and other Cyber security artefacts mentioned in ISO 21434.

Knowledge of the application of and ISO21434

Knowledge of Cyber Security technologies used to protect embedded systems.

Knowledge of, at least one or more of the automotive technologies: in-vehicle networks, safety critical embedded SW and HW, complex onboard computers, vehicle connectivity, etc.

Understanding of high integrity systems, and secure software and / or hardware design principles, in an embedded environment.

An academic qualification in cyber security or equivalent experience.