Key Requirements:
- Experience in creating Python scripts from scratch to perform tests on CAN (mandatory) and Flexray (desirable) busses, as well as automotive ethernet (desirable) -- venv, python-can experience mandatory.
- Experience in developing user-friendly and automated Penetration Testing frameworks.
- Good understanding of automotive communication busses (CAN and Ethernet mandatory, Flexray and LIN desirable).
- Diagnostics and debug interfaces knowledge (UDS ISO 14229, ASM XCP minimum).
- Experience working with JTAG (mandatory) via multiple types of debuggers eg JLink, Lauterbach (desirable)
- Git experience required.
- Penetration Testing experience (automotive and/or IoT) required, especially black box testing, wireless interfaces and API testing.
- Experience analyzing security protocols used in automotive/embedded systems/IoT devices.
- Low-level embedded systems experience and electronics experience strongly desirable.
- Ability to plan and execute ECU level & vehicle level Penetration Tests, according to given test scope.
- Experience working in an agile environment.
- Self-motivated individual, able to work independently and within a test lab environment.
Other Key Accountabilities and Responsibilities:
- Report to the Pen Test Manager on work and deliverables.
- Define Penetration Test Strategy from the 2nd line of Defense viewpoint for the governance of ECU and Vehicle and Offboard Penetration Testing
- Support the development of security testing within the Hardware in The Loop, (HiLs), test rigs
- Helping project teams to liaise with preferred Pen Test Suppliers
- Reviewing and agreeing to Penetration Test Scopes
- Review of Penetration Test Results and inform SOC and CISO of any high/critical risks identified via the risk governance board
- Collect, analyze, and prepare reports required for senior management, regulators, and other relevant stakeholders
- Experience in security assessment and Penetration Testing Tools within Vehicle Electrical Architecture and external interfaces such as Bluetooth, WiFi, and Mobile Communications
- Proven experience in Vehicle Diagnostics
- Understanding of Systems Engineering Principals, and Requirements development
- An ability to think analytically, rigorously and creatively with a commitment to quality and outstanding results
- Excellent written and verbal communication skills; ability to confer complex technical and procedural topics in a clear and concise form, confidently presenting to stakeholders
- Experience leading engineers from outsourced partners and suppliers
