Key Responsibilities
Monitor, triage, and respond to cybersecurity incidents originating from:
- Dealers and suppliers
- Public vulnerability disclosures & AutoISAC
- Internal systems and telematics inputs
- FollowPSIRT (Product security incident response team) framework and procedures:
- Information collection, classification/Triage, , investigation/Event analysis, Countermeasure, Response action plan and closure
- Coordinate with cross-functional stakeholders:
- Product Engineering, IT, Legal, Vendors, and Global Teams
- Ensure adherence to defined response timelines (SLA/KPIs) and regulatory requirements (AIS-189/190 / ISO 21434, ISO26262, UNR155/156)
- Perform or assist in root cause analysis and recommend corrective/preventive actions along with engineering
- Maintain incident documentation, audit trails, and evidence for compliance reviews
- Support threat intelligence tracking and vulnerability monitoring relevant to automotive systems
- Prepare management dashboards, reports, and escalation notes
- Additional responsibility - Contribute to Global Quality monitoring activities, continuous improvement programs & Data analytics activities.
- Manage yearly revenue & capital budgeting planning, monitoring and tracking activities.
- Liaison and represent Quality Assurance team during ARAI management system audit and Vehicle Type approval audits
- Support audits (internal/external) with evidence and scenario-based responses
Technical / Functional Requirements
- Strong understanding of:
- Automotive cybersecurity standards (ISO/SAE 21434, ISO26262, UNECE WP.29, AIS-189/190, UNR155/156)
- Incident response processes and vulnerability management activity
- Knowledge of:
- Vehicle E/E architecture, CAN, ECU communication, and telematics systems
- Cyber threat landscape (malware, exploits, vulnerability disclosures such as CVE)
- Incident response framework and best practices followed globally
- Experience in:
- Incident response, SOC/CSIRT operations, or vulnerability handling
- Risk assessment and impact analysis for automotive systems
- Familiarity with tools:
- Vulnerability databases (NVD, CVE, MITRE ATT&CK)
- Issue tracking tools (JIRA, Sharepoint)
- SIEM tools (e.g., Splunk, QRadar) is an added advantage
- Data analytics tools and python programming.
- Ability to interpret logs, diagnostics data, and failure reports
- Exposure to supplier cybersecurity management and coordination
Knowledge of Budgeting process and organizational commitments to budgeting
Educational Qualifications
- Bachelor's/Master's degree in:
- Electronics / Electrical Engineering
- Computer Science / IT
- Mechanical / Automotive Engineering
- Cybersecurity or related fields
- Relevant certifications (preferred):
- CEH / CompTIA Security+
- ISO 21434 / Automotive Cybersecurity certifications
- CISSP / CISM (desirable)
- Japanese Language proficiency N3N4 level (Optional)
