Title
Senior Cyber Security Architect – Infotainment & Connectivity (Automotive)
Location
Gaydon, England
Key Responsibilities
* Act as a Senior Cyber Security Architect supporting the lead cyber security architecture for Infotainment, Connectivity, and digital cockpit domains across automotive vehicles.
* Define, deliver, and govern the cyber security architecture for multiple ECUs, platforms, and vehicle programs, providing lifecycle support across concept, design, implementation, test, manufacturing, and production.
* Own and sign off Threat Analysis and Risk Assessment (TARA) activities and associated cyber security work products for the domain.
* Define cyber security architectures, concepts, and requirements covering platform, OS, middleware, applications, and services; mixed criticality and hypervisor‑based environments.
* Design and review security solutions for embedded automotive platforms including AUTOSAR Classic, QNX and Linux.
* Define and govern secure boot, secure update (OTA/FOTA), and key management architectures.
* Design and review secure manufacturing and provisioning processes, including key injection and secure flashing.
* Provide hands‑on architectural support to implementation and integration activities, working closely with software, systems, and integration teams.
* Support and review security verification, validation, and test activities, including penetration testing, vulnerability analysis, and remediation activities.
* Lead and facilitate threat modelling and TARA workshops with engineering teams and Tier 1 suppliers.
* Own and manage domain level vulnerability management, including risk triage and mitigation strategy definition.
* Define and review network and communications security architectures, including in‑vehicle and external network segmentation and zoning, firewalls and access control mechanisms, secure communication protocols (TLS, IPsec, MACsec), authentication, authorization, and access‑control models.
* Ensure cyber security designs and activities comply with applicable automotive standards and regulations.
* Work closely with vehicle program leadership, engineering and product teams, Tier 1 suppliers and technology partners, business leaders and senior technical decision forums.
* Act as a key technical contributor to cyber security decision making, without direct delivery ownership.
* Mentor and technically guide junior cyber security architects and engineers.
Must Requirements
* Bachelor’s or Master’s degree in Computer Science, Cyber Security, Electronics, or a related technical field.
* 12 + years of experience in cyber security, with a strong automotive background.
* Proven experience in a senior or lead cyber security architecture role within automotive or complex embedded systems.
* Strong practical knowledge and experience with ISO/SAE 21434, UNECE R155 and R156, ISO 27001.
* Hands‑on experience designing and supporting secure boot and chain of trust, secure software and firmware updates (OTA/FOTA), key management systems, PKI, and certificate lifecycle management.
* Experience providing architecture plus implementation and test support, not limited to documentation or governance.
* Strong technical understanding of embedded automotive ECUs and system architectures, AUTOSAR Classic security concepts, POSIX based operating systems (QNX, Linux), hypervisors and mixed criticality environments.
* Solid understanding of network and communications security, including firewalls, access control, and segmentation, TLS, IPsec, and MACsec.
* Comfortable working with engineering teams in environments where automotive software development maturity is evolving.
* Strong communication skills, able to explain complex security concepts to both technical and non‑technical stakeholders.
Preferred
* Experience delivering security solutions for Infotainment, Connectivity, or Digital Cockpit domains.
* Experience working with Tier 1 automotive suppliers.
* Familiarity with Chinese GB/T automotive cyber security standards.
* Experience with secure manufacturing, provisioning, and production environments.
* Experience supporting security audits, assessments, and regulatory reviews.
* Recognized cyber security certifications such as CISSP, CISM, CEH, CCSP, automotive‑specific cyber security training or certifications (where applicable).
* Experience mentoring or coaching junior cyber security professionals.
* Global program experience across multiple vehicle platforms.
We’re an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
#J-18808-Ljbffr