مدير أمن المنتجات

Product Security Manager

The Product Security Manager is a critical role within the automotive industry, focusing on ensuring the cybersecurity and compliance of vehicle programs. This position is responsible for leading technical efforts to align with regulations and standards, while also collaborating with various teams to integrate security across the product lifecycle.

• Cybersecurity Architecture Design: Create secure system architectures for vehicles, ensuring the protection of data integrity, confidentiality, and availability.
• Threat and Risk Management: Conduct thorough threat analysis, assess risks, and develop effective mitigation strategies to address potential vulnerabilities.
• Security Testing: Lead and oversee penetration testing, vulnerability assessments, and code reviews. Provide support for remediation processes to address identified issues.
• Secure Communication Protocols: Implement secure communication protocols for in-vehicle networks, including CAN and Ethernet, to ensure data integrity and privacy.
• Incident Response: Develop and manage incident response plans. Investigate security incidents, and implement corrective actions to prevent future occurrences.
• Compliance and Certification: Ensure adherence to automotive cybersecurity standards such as ISO 21434 and UNECE R155. Support certification processes and maintain compliance documentation.
• Collaboration and Integration: Work closely with engineering teams and stakeholders to integrate cybersecurity practices throughout the product development lifecycle.
• Documentation and Reporting: Maintain comprehensive compliance documentation. Review designs, identify gaps, and provide recommendations for improvement.
• Training and Awareness: Promote cybersecurity awareness among employees. Provide training on best practices, secure coding guidelines, and industry standards.

• Education: A Master's degree in Electrical/Computer Engineering or a related field is essential.
• Experience: Candidates should have over 7 years of experience in automotive cybersecurity engineering, with a strong focus on vehicle systems.

• In-depth knowledge of automotive systems, cybersecurity principles, and industry standards.
• Proficiency in threat modeling, risk assessment, and vulnerability analysis.
• Programming skills in C, C++, and Python.
• Expertise in in-vehicle networks, particularly CAN and Ethernet protocols.
• Understanding of secure coding practices and software security best practices.

• Preferred certifications include Automotive SPICE, ISO 21434, and UNECE R155.

• Strong analytical and problem-solving abilities.
• Ability to translate complex requirements into practical solutions.
• Excellent attention to detail with strong documentation skills.
• Effective communication and collaboration across various teams.
• Ability to manage multiple projects and priorities in a fast-paced environment.