Cyber Security Analyst

Senior Cybersecurity Validation (Penetration Test) - Analyst

Knorr-Bremse Technical Center India (TCI) is looking for a Cybersecurity Analyst into its India-based product cybersecurity team. Technical Center India is part of the Commercial Vehicle division of Knorr-Bremse AG, which designs and manufactures safety critical systems for commercial trucks, buses, trailers and heavy duty vehicles.

Due to the increasing number of external interfaces of a modern vehicle and the trends of autonomous driving, we have to put extra effort into making our products not only safe but secure as well.

As a Senior Cybersecurity Analyst, you will be responsible for cybersecurity validation (penetration testing) and vulnerability management, in relation of our products (Brake System, Steering System, Electrical Air Treatment, ADAS etc.) embedded into the next generation of trucks & buses .

Your main tasks will include:

Define the cybersecurity validation test strategy & plan

Validation and penetration testing on embedded controller units

Design and documentation of scripts for penetration test (CAPL, Python)

Development of automated tests for validation test (CAPL, Python)

Support junior colleagues in test development & execution

Design & Development of the Validation test environment

Develop and continuously improve the cybersecurity Validation processes

Close collaboration with our cybersecurity architect and project teams

Requirements:

Bachelor degree in computer science/electrical engineering or relevant cybersecurity certification in the area

At least 5 years of experience as a Penetration tester in embedded systems, preferably in the automotive field

Experience in CAPL, Python languages

Experience with CAN, LIN, CAN-FD, J1939, ISO-TP communications

Analytical skills and understanding of complex setups and interactions

Excellent communication and presentation skills

Being able to take on a challenge and not being afraid to dive into unknown territory

Fluent in written and spoken English

Advantages:

Experience with Vector Test environment (e.g. CANOE, VTestStudio, VTSystem)

Experience with Jira and Github

Understanding of today's automotive cybersecurity standards and regulations (such as ISO/SAE 21434, UN Regulation 155 and 156)

Relevant certification(s) on the field of cybersecurity (OSCP; CISSP; GCFE, CEH or similar)

Experience with hardware security, including Hardware Trust Anchors, PCB design and product packaging

Experience with automotive development and penetration testing tools (debuggers, decompilers, network traffic analyzers)

Knowledge and deep understanding of today's cryptographic algorithms, techniques and applications

Experience with Linux

What we offer:

Opportunity to work with an agile team on challenging validation projects in an international environment. This position is based at Pune/Chennai located in India.

You can be part of an international team and work together with Cybersecurity colleagues all around the globe.