Staff Software Engineer – Vehicle Security
Warren, Michigan, United States of America
Full Time
1 hour ago
H1B Sponsor
Key skills
CloudCyber SecurityJavaLinuxPythonRTOSGoC++CCI/CDCommunication
About this role
Role Overview
- Lead Security Architecture & Technical Ownership.
- Define and evolve end-to-end software security architecture for Certificate Lifecycle Management across vehicle and backend systems.
- Lead architecture design for security-critical vehicle domains including: Certificate Lifecycle Management, Connectivity platforms, Charging systems, Central compute and gateway systems.
- Design and drive system-level cryptographic architecture (PKI hierarchy, trust anchors, provisioning, certificate rotation, and revocation).
- Ensure alignment with global automotive cybersecurity standards, including: ISO/SAE 21434, UNECE WP.29 R155 and R156.
- Drive Security-Critical Software Excellence.
- Lead design and implementation reviews for: Certificate Lifecycle Management, Secure boot and firmware validation, Secure diagnostics and protected services, Key provisioning and lifecycle services, Secure communications (TLS, SecOC), Authentication and access control mechanisms.
- Translate cybersecurity requirements into robust, testable, and traceable software designs.
- Establish and guide secure implementation patterns across vehicle programs.
- Influence Across Platforms & Teams.
- Embed security-by-design principles into platform roadmaps and system planning.
- Align embedded, cloud, and connectivity teams around unified trust and identity models.
- Review and guide supplier security architectures for compliance and robustness.
- Serve as the escalation point for complex cryptographic and architectural decisions.
- Mentor & Elevate Engineering Capability.
- Provide deep technical mentorship to engineers across vehicle and platform teams.
- Elevate secure coding practices and architectural rigor.
- Contribute reusable frameworks, libraries, and reference implementations.
- Improve security tooling, automation, and CI/CD validation processes.
Requirements
- Bachelor’s degree in Computer Engineering, Electrical Engineering, Computer Science, or a related technical field.
- 8+ years of professional software engineering experience in embedded, systems, or platform software.
- Strong proficiency in C/C++ and at least one of: Python, Java, or Go.
- Hands-on experience with embedded or real-time systems, including: AUTOSAR Classic and/or Adaptive Embedded Linux RTOS-based systems.
- Deep understanding of vehicle communication protocols: CAN, LIN, Ethernet SOME/IP, UDS, DoIP.
- Demonstrated experience implementing: Cryptographic services and key management, Secure communications (TLS, IPsec), Authentication and authorization mechanisms.
- Experience working with Hardware Security Modules (HSMs) and secure elements.
- Strong background in threat modeling, secure coding practices, and code review processes.
- Proven ability to lead technical initiatives across distributed, cross-functional teams.
- Excellent analytical, problem-solving, and communication skills, with the ability to clearly document and review technical designs.
- Ability to operate effectively in ambiguous environments and make sound architectural decisions with limited data.
Tech Stack
- Cloud
- Cyber Security
- Java
- Linux
- Python
- RTOS
- Go
Benefits
- From day one, we're looking out for your well-being–at work and at home–so you can focus on realizing your ambitions.