Attiva gli avvisi di lavoro via e-mail!
Cybersecurity Expert
Vodafone Automotive
Milano
In loco
EUR 65.000 - 85.000
Tempo pieno
Descrizione del lavoro
A leading automotive technology firm is seeking an experienced cybersecurity engineer in Milan to ensure compliance with automotive cybersecurity standards. You will drive security architecture, perform risk assessments, and lead security testing. The ideal candidate has 8–10 years of experience in embedded systems and strong knowledge of ISO 21434. Fluency in English is required for technical documentation and audits.
Competenze
- 8–10 years in embedded/automotive cybersecurity roles.
- Hands-on expertise with Secure Boot and HSM/TPM.
- Familiarity with DevSecOps processes and tools.
Mansioni
- Perform and maintain Threat Analysis and Risk Assessment.
- Configure Secure Boot, integrate HSM, and set firewall rules.
- Lead pen-testing, fuzzing, and vulnerability management.
Conoscenze
Formazione
Strumenti
Role purpose: Ensure the TCU is conceived and developed according to a security-by-design approach, fully compliant with automotive cybersecurity standards (ISO 21434, UNECE R155 / R156). The role drives security architecture definition, influencing early system and software decisions to safeguard data, communication channels, and the boot path.
- TARA & Mitigation – Perform and maintain Threat Analysis and Risk Assessment, converting risks into actionable security requirements.
- Security architecture definition – Configure Secure Boot, integrate HSM, set firewall rules and Secure Storage in close partnership with System and Software Architects.
- Secure protocol & cryptography integration – Support TLS, IPsec, MACsec; advise on crypto libraries (wolfSSL, PKCS#11) and crypto hardware.
- Key & trust management – Implement root-of-trust, manage X.509 certificates, authenticated OTA and firmware rollback protection.
- Documentation & compliance – Author Cybersecurity Concept, Security Case; prepare for audits / certifications (UNECE R155 / R156).
- Security testing & vulnerability management – Lead pen-testing, fuzzing, SBOM-based vulnerability mitigation within a DevSecOps framework.
- Standards & regulations: Mastery of ISO / SAE 21434, UNECE R155 / R156, AUTOSAR Security.
- Security architectures: Secure Boot, HSM / TPM, Secure Element, key provisioning strategies.
- Applied cryptography: TLS / IPsec protocols, certificate management, side-channel defenses.
- HW / SW integration: Close work with Linux, AUTOSAR developers and hardware teams.
- Security testing: Pen-testing, fuzzing, embedded vulnerability scanning.
- Soft skills: Clear communication, technical negotiation, cross-functional teamwork.
- Degree in Computer or Electronics Engineering (or equivalent).
- 8–10 years in embedded / automotive cybersecurity roles.
- Hands-on expertise with Secure Boot, HSM / TPM, embedded crypto libraries.
- Fluent English for technical documentation and international audits.
- Familiarity with DevSecOps processes, SBOM, pen-test and fuzzing tools.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
più velocemente
Seguici
