Talent.com
This job offer is not available in your country.
Senior Cybersecurity Analyst, Risk and Compliance Assessor

Senior Cybersecurity Analyst, Risk and Compliance Assessor

BorgWarner Drivetrain & Morse SystemsJasionka (pow. rzeszowski), podkarpackie, Polska
19 days ago
Job description

responsibilities :

  • Be passionate and forward-thinking about cybersecurity and the needs of the ever-changing automotive industry
  • Plan and implement cybersecurity audit and assessment activities in projects, considering customer specifications, the cybersecurity process, and your own experience
  • Perform daily operations for PSIRT activities, including intake, initial analysis, and execution of initial product security incident response
  • Participate in cybersecurity risk assessments and threat modelling within the product scope
  • Perform cybersecurity confirmation reviews on agreed-upon work products
  • Collaborate with hardware and software teams to develop cybersecurity technical solutions as required by the project
  • Review the cybersecurity assurance case
  • Interface with suppliers on technical cybersecurity issues
  • Follow and keep up to date with vulnerabilities of suppliers and customers
  • Network and maintain a high level of industry knowledge
  • Work directly with Cybersecurity Managers and Engineers to provide cybersecurity support on projects
  • Attend to inquiries from various external and internal stakeholders seeking assistance from the team
  • Manage the coordination for disclosures through the vulnerability disclosure program
  • Create, audit, and improve PSIRT process documentation and communications deliverables, including the PSIRT plan, playbooks, procedures, and Product Security Advisory content
  • Continuously monitor and communicate realistic expectations of capabilities to stakeholders
  • Build and maintain collaborative working relationships with various internal functional groups and other stakeholders to effectively resolve issues and remove barriers to program success

requirements-expected :

  • Bachelor's Degree in Engineering or Computer Science (required)
  • 2+ years of experience in a product cybersecurity position or 5+ years in an embedded systems or software competence with a strong interest in cybersecurity(required)
  • 2+ years Audit and Assessment experience (preferred)
  • Knowledge of Automotive cybersecurity / Functional Safety standards (e.g. ISO / SAE 21434, WP.29 SUMS & CSMS, ISO26262 (preferred)
  • Understanding of public key infrastructure (PKI) in medium to large environments to include key management, digital certificates, and digital signatures as this impact the systems we build (preferred)
  • Familiarity with automotive network architecture, modules, and protocols (CAN, Flexray, etc.) (preferred)
  • Understanding of multi-core embedded microcontrollers that use HTAs (hardware trust anchors) (preferred)
  • Being passionate and forward-thinking about cybersecurity and the needs for an ever-changing automotive industry
  • Ability to work effectively across functional and geographic boundaries in the interest of the customer and the business (required)
  • Excellent organizational and interpersonal skills (required)
  • Excellent time management skills (required)
  • Excellent written and verbal communication skills (required)
  • Excellent analytical and problem-solving skills (required)
  • Ability to work independently with minimal supervision (required)

    • benefits :

  • dofinansowanie zajęć sportowych
  • prywatna opieka medyczna
  • dofinansowanie szkoleń i kursów
  • ubezpieczenie na życie
  • możliwość pracy zdalnej
  • elastyczny czas pracy
  • firmowa drużyna sportowa
  • preferencyjne pożyczki
    • Create a job alert for this search

    Senior Risk Analyst • Jasionka (pow. rzeszowski), podkarpackie, Polska