Who are we?
Plaxidityx, is a global leader in the automotive cybersecurity industry. We protect drivers and manufacturers from cyber-attacks on their vehicles. We use top-notch technology and have several products for inside and outside the car. Our growing team is built of talented thinkers, and we are always looking for more!
Why PX?
- You can be part of a leading company in the automotive industry
- You can help save lives
- You can work with cool challenging technology
- You can make an impact and help change the world
Role overview:
Help shape future automotive security architectures by analyzing future designs, use cases and architectures, identifying potential security gaps and suggesting appropriate solutions. Work closely with leading automotive companies and dive into the details of embedded system design, automotive networks and architectures as well as operating system security in order to design cost effective security strategies and implementations.
In your work you'll be part of a team that consult to OEM's and Tier#1 on how to raise the level of their cyber security. During this consultancy you will be required to:
- Provide cybersecurity architecture artifacts for the vehicle ECUs at System, SW & HW level
- Perform Threat Analysis and risk assessment - TARA, mostly according to ISO-21434. Work with threat modeling tools and more.
- Develop cybersecurity concepts for complex ECUs
- Create and write cybersecurity requirements for complex ECUs
- Manage Tier 1 suppliers and audit the CS Cases submitted by suppliers
- Design secure architectures and security controls
Requirements:
- At least 5 years of experience and profound knowledge of automotive cybersecurity architectures
- Profound knowledge of HW cybersecurity mechanisms
- Familiarity with wide range of automotive System On Chips
- Knowledge of cryptographic algorithms and secure protocols
- At least 5 years of experience in developing cybersecurity concepts for vehicle ECUs and vehicle
- Experience with threat analysis and risk assessment
Advantages:
- Knowledge and experience in the following standards / methods: ISO 21434, UNECE R155, JASPAR, A-SPICE
- Cyber Security Management Systems (CSMS) and related processes, e.g. ISO/IEC 27000:2018
- Risk Management Frameworks, e.g. ISO 31000, NIST Cybersecurity Framework, NIST SP 800-30 Risk Management Guidelines