Cyber Security Consultant (German Required)

P3 is a consulting company specializing in automotive cybersecurity, and they are seeking a Cyber Security Consultant with expertise in regulatory compliance and secure system design for connected vehicles. The role involves ensuring compliance with cybersecurity regulations, conducting risk assessments, and advising on secure system architecture.

Responsibilities:

• Ensure organizational and product cybersecurity compliance with ISO 21434, UNECE R155 and R156
• Support the development, rollout, and maturity evaluation of the Cyber Security Management System (CSMS)
• Align cybersecurity requirements across engineering, quality, compliance, and supplier teams
• Prepare documentation and evidence for audits, regulatory submissions, and customer assessments
• Conduct comprehensive TARA activities using industry‑recognized methodologies
• Identify cybersecurity risks for in‑vehicle functions, ECUs, and backend services
• Define mitigation strategies, security goals, and cybersecurity requirements
• Collaborate with safety teams to ensure alignment between HARA and cybersecurity
• Advise on secure E/E and ECU architecture design for modern vehicle platforms
• Define and validate security controls including Secure Boot, HSM, certificate‑based authentication, and key lifecycle management
• Review supplier specifications and technical documentation for cybersecurity gaps
• Contribute to the definition and implementation of incident response processes for automotive ecosystems
• Support analysis and remediation of cybersecurity incidents affecting vehicles, cloud services, and OTA systems
• Help establish or operate a Vehicle SOC (vSOC), including log analysis, threat detection, and monitoring
• Support secure OTA update design and compliance with UNECE R156
• Assess cloud platforms for secure operation of connected vehicle services
• Provide guidance on secure deployment pipelines, API security, IAM, and platform monitoring
• Communicate cybersecurity requirements and findings effectively to engineering and management teams
• Provide cybersecurity training sessions to internal teams and suppliers
• Use German language skills to interact with German‑speaking OEMs, suppliers, auditors, or regulators — a mandatory requirement for this role

Requirements:

• Fluent in English and advanced in German (German is a must in this role)
• Strong expertise in automotive cybersecurity, regulatory compliance, and secure system design for connected and software‑defined vehicles
• Experience in supporting OEMs, Tier‑1 suppliers, and mobility technology companies in meeting global cybersecurity regulations and implementing end‑to‑end security processes
• ISO/SAE 21434
• UNECE R155 – Cybersecurity Regulation
• UNECE R156 – Software Update Regulation
• CSMS (Cyber Security Management System)
• TARA (Threat Analysis & Risk Assessment)
• Automotive Cybersecurity & Vehicle Cybersecurity
• ECU Security & secure E/E architectures
• Secure Boot, PKI, authentication & key management
• Incident Response & Digital Forensics
• Vehicle SOC (vSOC) operations
• Cloud Security for connected vehicle ecosystems