Product Cybersecurity Engineer - Automotive

For prestigious Multinational Company, operating in Automotive field, we are searching for:

Product Cybersecurity Engineer

The Cybersecurity Engineer will lead the security of embedded controllers. This role is critical to ensuring the resilience of our ECUs (Electronic Control Units) against cyber threats, in compliance with industry standards such as ISO / SAE 21434, UN Regulation No. 155, and the Cyber Resilience Act (CRA).

• Define and Integrate Cybersecurity Requirements: Translate cybersecurity goals into actionable system, hardware, and software requirements in compliance with ISO / SAE 21434. Collaborate with engineering teams to embed these requirements into ECU architectures, supporting a “cybersecurity by design” approach aligned with UNR 155 and the CRA.
• Conduct Risk Assessments and Support Secure Design: Participate in Threat Analysis and Risk Assessment (TARA) activities to identify potential threats and define mitigation strategies. Ensure that derived requirements effectively address identified risks and are consistently applied throughout the development lifecycle.
• Verify Implementation and Ensure Compliance: Validate that cybersecurity controls meet defined requirements through design / code reviews and test strategy alignment. Maintain traceability from goals to implementation and validation, and prepare documentation for audits and regulatory compliance.
• Support Post-Development and Product Lifecycle Security: Ensure readiness for post-development by delivering required cybersecurity work products (e.g., Cybersecurity Case, Assessment Report, Post-Development Requirements). Support operational teams with incident response, maintenance, and secure decommissioning processes.
• Promote Continuous Improvement and Cross-Functional Alignment: Collaborate with validation, testing, and quality teams to align cybersecurity activities across the organization. Stay current with evolving standards and threats, incorporating lessons learned into future projects.

• Master’s degree in Cybersecurity, Computer Engineering, Electronics, or related field.
• Solid experience in automotive embedded systems development; experience in embedded systems security.
• Strong knowledge of embedded C / C++, microcontroller architectures, and automotive communication protocols (CAN, LIN, Ethernet).
• Familiarity with ISO / SAE 21434, UNR 155, AUTOSAR, and ISO 26262.
• Experience with cryptographic libraries, secure boot, HSMs, and secure firmware updates.
• Strong analytical and problem-solving skills, with the ability to articulate technical cybersecurity issues and collaborate effectively across multidisciplinary teams.

Location: Torino, Italy