Share this Job
Apply now »

Senior Cyber Security Engineer - Vehicle

Job Number:  33143
Group:  Magna Corporate
Division:  Magna Services of America (Troy Office)
Job Type:  Permanent/Regular
Location: 

TROY, MICHIGAN, US, 48083

Group Description
 
At Magna, we create technology that disrupts the industry and solves big problems for consumers, our customers, and the world around us. We’re the only mobility technology company and supplier with complete expertise across the entire vehicle.

 

We are committed to quality and continuous improvement because our products impact millions of people every day. But we’re more than what we make. We are a group of entrepreneurial-minded people whose collective expertise gives us a competitive advantage. World Class Manufacturing is a journey and it’s our talented people who lead us on this journey.
 

Role Summary

The Cyber Security Risk Management role is to provide vision and leadership for developing and supporting Cyber Security Risk Management initiatives to protect Magna Corporate information assets, as they are stored, processed or transported by means of an Information System. They will work closely with the Director Information Security and the Manager Cyber Security Architecture to align with corporate requirements. This individual is also responsible for directing the development and administration of the Cyber Security Risk Management policy, and related activities, and standards.

Key Responsibilities

•    Define cybersecurity risk management on vehicle level with damage scenarios, relevant stakeholders, impact categories and related products.
•    Develop, specify and check security requirements
•    Define cybersecurity risk management practices.
•    Identify potential risks.
•    Analyze potential risks and evaluate risks.
•    Derive cybersecurity goals and requirements from the outcomes of risk evaluation and assessment
•    Ensure consistency between the risk assessment, cybersecurity goals and cybersecurity requirements.
•    Communicate agreed cybersecurity goals and cybersecurity requirements to all affected parties.
•    Define risk treatment option.
•    Refine the details of the architectural design based on cybersecurity goals and cybersecurity requirements.
•    Allocate the cybersecurity requirements to one or more elements of the architectural design
•    Monitor risks and develop a risk treatment verification and integration strategy.
•    When relevant changes to risks are identified, initiate and follow up appropriate corrective action.
•    Set up Cybersecurity Management System as required per ISO/SAE 21434
•    Ensure the effective implementation of cybersecurity across the vehicle life-cycle with managers and developers 
•    Coordinate relevant documents/work products to fulfill the ISO standard 
•    Plan and track all Cybersecurity activities according to the defined project processes
•    Stay connected and up to date on newest cybersecurity threats and vulnerabilities
•    Define cyber security requirements for production and maintenance phase of vehicle
 

Key Qualifications/Requirements

QUALIFICATIONS:
•    Must be a team player, highly motivated, must demonstrate a high degree of confidentiality, discretion, integrity, and professionalism in all aspects of the job
•    Ability to set and manage priorities judiciously
•    Excellent written and oral communication skills
•    Strong negotiating skills
•    Excellent interpersonal skills
•    Ability to present ideas in business-friendly and user-friendly language
•    Exceptionally self-motivated and directed
•    Superior analytical, evaluative, and problem-solving abilities
•    Ability to motivate in a team-oriented, collaborative environment

EDUCATION / EXPERIENCE:
•    University degree in the field of Cyber Security, Risk Management or comparable work experience
•    CRISC certification preferred
•    5 years’ experience managing and/or directing a security governing function
•    5 years’ experience working in the automotive industry

SPECIAL KNOWLEDGE / SKILLS: 
•    Proven experience in planning and executing security risk management
•    Planning, organizing, and developing automotive Cyber Security (ISO 21434)
•    Excellent knowledge of information security industry standards (ISO/IEC 27001) NIST Cyber Security Framework
•    Considerable knowledge of IT cyber security tools and standards
•    Considerable knowledge of business theory, business processes, management, budgeting, and business office operations
•    Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems
•    Experience with systems design and development from business requirements analysis through to day-to-day management
•    Excellent understanding of project management principles 
•    Demonstrated ability to apply Risk Management in solving security challenges
•    In-depth knowledge of applicable laws and regulations as they relate to security
•    Understanding of ANSI, SAE, QS-9000 and other industry/customer related standards
•    Must be able to travel internationally on an occasional basis
•    Valid driver’s license
 

Additional Information

•    While performing the duties of this job, the employee is regularly required to talk and hear and use hands to finger, handle, and feel. The employee is required to reach with hands and arms and have adequate mobility to stand, walk, sit, stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to fifty (50) pounds.
•    Required Responsible for working in compliance with the provisions of the Health and Safety Act as well as any rules or standards.  Expected to exercise caution in all work activities and report any unsafe conditions, injuries, or near misses to the appropriate supervisor 
 


Nearest Major Market: Troy
Nearest Secondary Market: Detroit

Apply now »