Senior Engineer - Autosar Cyber Security

Senior Engineer - AUTOSAR Cyber Security

Job Summary :

We are seeking a highly skilled and experienced Senior Engineer specializing in AUTOSAR Cyber Security to join our dynamic automotive software development team. The successful candidate will be instrumental in designing, implementing, and validating robust security solutions within the AUTOSAR framework for next-generation automotive Electronic Control Units (ECUs). This role demands deep technical expertise in embedded systems security, cryptographic principles, and the AUTOSAR standard.

Key Technical Responsibilities :

Security Architecture & Design :

- Lead the analysis of security requirements (e.g., ISO/SAE 21434, UN R155/R156) and translate them into secure architectural designs for AUTOSAR-compliant ECUs.

- Perform comprehensive Threat Analysis and Risk Assessments (TARA) using methodologies such as STRIDE, Attack Tree, and similar industry-standard approaches.

- Define and design secure boot, secure flashing, secure diagnostics, and secure communication mechanisms within the AUTOSAR environment.

- Develop detailed software designs for cryptographic modules, Hardware Security Modules (HSM), and other security-critical components.

AUTOSAR Security Implementation :

- Configure, integrate, and customize AUTOSAR Crypto Stack modules (e.g., Crypto Service Manager, Crypto Interface, Crypto Drivers) for various cryptographic algorithms (AES, RSA, ECC, SHA, CMAC, HMAC).

- Implement and verify Secure Onboard Communication (SecOC) for in-vehicle communication buses (CAN, LIN, FlexRay, Ethernet).

- Integrate and manage Hardware Security Modules (HSM) or Secure Element (SHE) functionalities within the AUTOSAR Basic Software (BSW).

- Develop and integrate security features such as Key Management, Certificate Management (PKI), and Intrusion Detection Systems (IDS).

- Apply secure coding principles (e.g., MISRA C, CERT C) during all software development phases.

Embedded Software Development & Debugging :

- Develop high-quality, efficient, and robust embedded software in C/C++ for automotive microcontrollers (e.g., ARM Cortex-M/R, AURIX, PowerPC).

- Work extensively with Real-Time Operating Systems (RTOS) in an AUTOSAR context.

- Utilize advanced debugging tools (e.g., Lauterbach Trace32, WinDbg) and in-circuit emulators for deep-level software analysis and fault isolation.

- Perform memory optimization and performance tuning for resource-constrained embedded environments.

Verification & Validation :

- Develop and execute comprehensive unit, integration, and system-level tests for security features, including negative testing and fuzzing.

- Conduct vulnerability analysis, penetration testing (where applicable), and security assessments of embedded software and systems.

- Utilize static analysis tools (e.g., Polyspace, Klocwork, QAC) and dynamic analysis tools for code quality and security vulnerability detection.

- Automate testing processes using scripting languages (e.g., Python, CAPL, Bash) and test automation frameworks.

Tools & Technologies :

- AUTOSAR Tools : Vector DaVinci Configurator Pro, DaVinci Developer, EB tresos Studio, ETAS ISOLAR-A/B.

- Communication Tools : Vector CANoe, CANalyzer, CANape, Wireshark.

- Development Tools : Git, Jira, Confluence, Enterprise Architect (EA), DOORS.

- Testing Tools : VectorCAST, Cantata, Tessy.

- Hardware Knowledge : Deep understanding of microcontroller security features (e.g., memory protection units, debug interfaces, trusted execution environments).

Required Technical Skills :

- Expertise in AUTOSAR Classic and Adaptive Platform architectures, especially concerning the Communication Stack (Com, CanIf, CanDrv, EthIf, EthSwt, EthTrcv), Diagnostic Stack (Dem, Dcm, Fim), and Memory Stack (NvM, MemIf, Fee, Fls).

- Strong proficiency in embedded C and C++ programming, with a focus on secure coding practices.

- In-depth knowledge of cryptographic primitives (symmetric/asymmetric encryption, hashing, digital signatures), cryptographic libraries, and Public Key Infrastructure (PKI).

- Demonstrable experience with Hardware Security Modules (HSM) or Secure Elements (SHE) integration and their associated APIs.

- Hands-on experience with automotive communication protocols : CAN, LIN, FlexRay, Automotive Ethernet (including MACsec, IPsec, TLS).

- Solid understanding of embedded system concepts, real-time operating systems (RTOS), and microcontroller architecture.

- Familiarity with automotive cyber security standards and regulations such as ISO/SAE 21434, UN R155/R156, and relevant industry guidelines (e.g., EVITA).

- Experience with threat modeling, risk assessment, and vulnerability management processes.

- Proficiency with configuration management tools (Git, SVN) and issue tracking systems (Jira).

- Experience with scripting languages (Python, CAPL) for test automation and toolchain integration