Staff Cyber Security Engineer
Posted on 2/17/2023
INACTIVE
Torc Robotics

501-1,000 employees

Self-driving software
Company Overview
Torc Robotics’ mission is simple: to save lives. The company is committed to commercializing self-driving technology to make the world a safer place. Moreover, Torc Robotics is creating commercialization-ready autonomous solutions, proven safe and carefully crafted to meet real industry goals.
Robotics & Automation
Industrial & Manufacturing
AI & Machine Learning
Aerospace

Company Stage

N/A

Total Funding

N/A

Founded

2005

Headquarters

Blacksburg, Virginia

Growth & Insights
Headcount

6 month growth

9%

1 year growth

32%

2 year growth

63%
Locations
Remote
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Communications
Management
JIRA
Linux/Unix
Requirements
  • Master's degree in Computer Engineering/ Systems Engineering/ Electrical Engineering/ Computer Science or equivalent and 8 years of relevant experience or a Bachelor's and 10 years of experience
  • Extensive knowledge of ISO 21434 and/or UNECE WP.29 R155
  • Background in computer science, computer engineering or cyber security
  • Knowledge of basic cryptography is required
  • Familiar using a disciplined product development process based on the Automotive SPICE or CMMi process model
  • Working knowledge of configuration management tool, project monitoring and control techniques
  • Familiar with structured problem solving (8D) methods and/or techniques
  • Strong interpersonal skills and oral and written communication skills
  • Detail oriented, reliable, and self-motivated
  • Ability to work in an environment of ambiguity and ongoing change
Responsibilities
  • Lead cyber security activities for Tor in compliance with ISO 21434, UNECE W.29, and Torc cyber security development processes in collaboration with external teams
  • Lead the Threat Analysis and Risk Assessment (TARA) in collaboration with the functional safety team, and lead the team for TARA updates
  • Lead the security concept development
  • Lead the security requirements development and requirements review
  • Coach teams in implementing the cyber security requirements
  • Guide software engineers in vulnerability analysis (static code analysis, known vulnerability analysis) and support tracking cyber security implementation issues based on the vulnerability analysis
  • Support verification teams in performing the security verification tests
  • Perform vulnerability management for issues found in testing
  • Provide guidance and support for the incident response team
  • Support incident response activities as assigned
  • Cultivate awareness of incident response in the engineering team
  • Grow the cyber security culture
  • Maintain the Cyber Security plan
  • Align to the Automotive SPICE compliant processes at Torc
  • Support the SW cyber security tool qualification process
  • Provide training for ISO 21434
  • Support tracking of cyber security issues and supports driving their closure
  • Track cyber security issues and support activities for their closure (vulnerability management)
  • Support the systems team in developing the security architecture for product lines and projects during quote
  • Interface with external vendors and suppliers to ensure cyber security compliance
  • Support quality engineering team in answering cyber security related questions
  • Follow Torc processes and work instructions
  • Continually improve by staying up-to-date in cyber security technologies
Desired Qualifications
  • Experience with cyber security in embedded systems is preferred; experience in automotive or aerospace industry a plus
  • Experience with JIRA and SAFe model
  • Experience with requirements tracking tools such as DOORS NG or JAMA
  • ISO 21434 Certification preferred
  • Knowledge of or experience in the application of ISO 26262 (Automotive functional safety) preferred
  • Experience with other communication protocols, such as I2C, SPI, or UART
  • Knowledge of common protocols, such as TLS, IPsec, or IEEE 802.1x, is a plus
  • Experience with standard security protocols in common connectivity such as WiFi, Bluetooth, or USB is a plus
  • Knowledge of firewall or Intrusion Detection and Prevention System is a plus
  • Knowledge of Linux or QNX operating system security is a plus
  • Experience with failure analysis techniques (FMEA, FTA,..) a plus
  • Reliability engineering knowledge is a plus