|
Sr. Principal Security Engineer Join Aptiv and help lead the automotive industry into a more resilient and assured cybersecurity future. Our team protects our customers from the most advanced threats affecting the automotive industry. Aptiv's Central Product Cybersecurity team is working to protect Aptiv products by executing security research and development activities. As our Sr. Principal Security Engineer,you will focus primarily on developing novel cybersecurity capabilities into hardware and software. You will engage in vulnerability discovery and reverse engineering activities. Additionally, you will be interfacing with the production engineering teams, enhancing open-source firmware, experimenting with state-of-the-art technologies, and much more. Your contributions will ensure vehicles on the streets are protected from grave threats posed by criminals and terrorists. Responsibilities:
- Research and develop production-ready cybersecurity capabilities, develop reverse engineering tools and other cyber research instrumentation
- Develop, enhance and customize security capabilities, tooling and instrumentation
- Communicate security research findings to production engineering teams around the world, ensuring integration into platforms and products
- Collaborate with open-source organizations to ensure quality of our open-source cybersecurity stack, including making quality and feature improvements
- Conduct experiments to test the limits of state-of-the-art technologies to uncover weaknesses and vulnerabilities
- Translate research findings into patents, blog posts, and conference publications
- Maintain an up-to-date awareness of offensive and defensive cybersecurity activities in the public/commercial domain and working to accelerate cyber operations as appropriate
- Break down long-term efforts into discrete tasks that demonstrate incremental progress
- Guide product teams through integration of new cybersecurity system designs and testing methodologies
- Defend research viewpoints to senior and executive leadership by providing compelling information and evidence
Required Qualifications:
- 5+ years' experience in cybersecurity engineering, development of cryptographic libraries/protocol stacks, vulnerability research, or reverse engineering
- 5+ years' experience with C, assembly (ARM, MIPS, RISC-V, Intel x86_64, proprietary architectures, etc.), or similar low-level/embedded development
- 3+ years' experience with: 1) host-based virtualization (VMware workstation, QEMU-KVM, Xen, etc.) and emulation technologies (QEMU, Simics, etc.); 2) conducting offensive cyber research such as vulnerability research and exploit development against embedded systems; 3) scripting languages like Python in a Linux-like environment; and 4) debugging embedded systems (JTAG, UART, proprietary debugging environment, etc)
- Familiarity with embedded systems development and use of cryptography and/or communications implementations
- Good organization, communication, collaboration and interpersonal skills
- A go-getter that is passionate to learn about new security vulnerabilities and develop assessment automation solutions
- Interest and/or experience with bug bounties, capture-the-flag competitions, etc.
- Experience proposing and executing independent research and development tasks and writing conference-level technical reports
- Familiarity with version control systems and code review processes
Preferred Qualifications:
- Master's Degree in Computer Science, Computer Engineering, Electrical Engineering or similar discipline
- 2+ years' experience developing with automotive hardware and architectures (e.g., TriCore)
- 2+ years' experience developing for FPGAs such as Xilinx, NXP, etc. and using their associated tool suites such as Vivado, etc.
- Familiarity with automotive communication systems (CAN, CAN-FD, automotive Ethernet, etc.)
- Familiarity with automotive operating systems such as SROS2 and software communications middleware DDS
- Familiarity with Bluetooth, NFC, and/or Wi-Fi implementations and communications
- General understand circuit schematics, hardware data sheets, and/or logic design
- Experience working as part of a cross-functional team to implement diverse solutions
- Experience performing threat modelling and design reviews to assess security implications and requirements for introduction of new technologies
- Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions
- Experience in customer discussions and technical design reviews and supporting cross discipline activities
- High level of oral and written communication skills
- Ability to communicate and present complex issues and ideas with precision and clarity, adjusting appropriately for the audience; ability to communicate effectively up to the Vice President level
- Good personality and strong ability for successfully working independently
YOUR BENEFITS AT APTIV:
- Private health care effective day 1 of employment
- Life and accident insurance
- Paid Time Off (Holidays, Vacation, Designated time off, Parental leave)
- Learning and development opportunities
- Discount programs with various manufacturers and retailers
- Recognition for innovation and excellence
- Opportunities to give back to the community
- Tuition Reimbursement
- Adoption Assistance
- Fertility Coverage
WHY JOIN US?
- You can grow at Aptiv. Aptiv provides an inclusive work environment where all individuals can grow and develop, regardless of gender, ethnicity or beliefs.
- You can have an impact. Safety is a core Aptiv value; we want a safer world for us and our children, one with: Zero fatalities, Zero injuries, Zero accidents.
- You have support. We ensure you have the resources and support you need to take care of your family and your physical and mental health with a competitive health insurance package.
APPLY TODAY, AND TOGETHER LET'S CHANGE TOMORROW! "Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law" #LI-MM2 Privacy Notice - Active Candidates: https://www.aptiv.com/privacy-notice-active-candidates Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law.
|