Cyber Security Manager in Unterschleißheim bei Maa Electronics Germany

At Magna, our groups work together to deliver advancements in mobility to build a better world for everyone and everything. Magna’s ADAS technologies are shaping an autonomous future and improving lives.

Full autonomy is coming. But to create the technology which will bring it into view, you need the desire and ability to adapt complete ADAS systems or modular solutions to any vehicle, for any mobility need.

Magna’s electronics solutions connect OEMs to their customers with features that improve their lives. It’s our expertise across the entire vehicle, key strategic partnerships and culture of innovation that allow us to make our industry-leading technologies road-ready. And it is how we’ll continue to build a safer, smarter and more connected mobility experience for all people.

Location Unterschleißheim

Employment conditions Full-time employment

Starting Date as soon as possible

What you'll do?

• Lead cybersecurity-related projects, together with the project manager, by planning, monitoring and executing cybersecurity activities in projects according to the state-of-the-art recommendations (e.g. SAE J3061, ISO/SAE 21434, UN R155, UN R156, ISO 24089, ISO 27000 series, IEC 62443)
• Ensure involvement of relevant stakeholders in the project, including customers, suppliers, and service providers, related to cybersecurity-relevant activities
• Support in the elicitation of customer’s cybersecurity requirements including alignment in cybersecurity goals and cybersecurity claims, together with a dedicated team and directly with corresponding customers; for both RFIs and RFQs
• Support in supplier agreement contracts for cybersecurity, particularly on the specification of the distributed cybersecurity activities; for both, with customer and with sub-supplier (i.e. cybersecurity interface agreements)
• Create, maintain, and refine work products related to cybersecurity management
• Ensure that cybersecurity concepts are created, selected, and implemented according to internal processes and state-of-the-art recommendations within the automotive industry; including definition of related cybersecurity specifications and cybersecurity requirements
• Contribute to the overall system architecture with the aim of achieving the right level of cybersecurity
• Moderate analyses related to cybersecurity (e.g. Threat Analysis and Risk Assessment (TARA), Vulnerability Analysis and Risk Assessment (VARA))
• Compile proper documentation in the project to provide the argument for the cybersecurity of the item or component, supported by work products (i.e. Cybersecurity Case)
• Lead cross-functional technical and functional areas to provide credible advice regarding cybersecurity
• Communicate cybersecurity risks, events and incidents to peers, management and customers in accordance with cybersecurity communication strategy; including escalation into Global Cyber Security Organization
• Support the establishment of a cybersecurity culture in the organization (e.g. by planning and executing internal trainings for employees of different backgrounds including related coaching and follow-ups)
• Support the definition and improvement of processes, methods, and tools for cybersecurity
• Support the implementation and improvement of Cyber Security Management Systems (CSMS), Software Update Management Systems (SUMS) and Trusted Information Security Assessment Exchange (TISAX) within the organization

What you'll bring

• Degree in Electrical Engineering or Computer Science or related field or appropriate experience in such a position
• At least 5 years of work experience in automotive cybersecurity related functions
• Experience with automotive cybersecurity related standards and regulations (e.g. ISO/SAE 21434, UN R155, UN R156, ISO 24089)
• Understanding of NIST cybersecurity standards (e.g. cryptographic modules, random numbers generators, penetration testing, transport layer security (TLS))
• Understanding of coding standards (e.g. MISRA-C, ISO/IEC TS 17961, SEI CERT C coding, HIS source code metric)
• Understanding of cybersecurity common scoring systems (e.g. CVSS, CWSS)
• Understanding of crypto services (e.g. integrated HSM (Hardware security module))
• Understanding of cybersecurity testing (e.g. fuzz testing and penetration testing)
• Good knowledge on cybersecurity analyses (e.g. TARA)
• Good knowledge in Systems Engineering, Embedded Systems and Electronics
• Basic knowledge on automotive safety related standards (e.g. ISO26262, ISO21448)
• Basic knowledge of risk assessment tools, technologies and methods
• Team player who likes to work in multi-cultural project groups
• Technical leadership, problem solv