Cyber Security Pen Test Manager - Vehicle & ECU
- Jaguar Land Rover
- Warwick, Warwickshire
- 24/09/2022
Full time
Information Technology
Telecommunications
Job Description
Job description:
WHAT TO EXPECT
We are looking for a Cyber Security Pen Test Manager for Vehicle and ECU, you will possess Automotive Penetration Testing experience and you will be expected to take a lead role for your area of specialism and will possess the ability to be comfortable leading and directing engineers from outsourcing partners and suppliers.
Jaguar Land Rover applies a Three Line of Defence Model to security and this role will manage and provide oversight of the Product Engineering Penetration Testing activities concerning ECU's and Vehicle testing in support of the Second Line of Defence within the DIGITAL Information Cybersecurity, (ICS), department.
You will need to represent the ICS department in wider business discussions, and show clear traceability through standards, process definition and technical documentation.
Key Accountabilities and Responsibilities
Define Penetration Test Strategy from the 2nd line of Defence viewpoint for the governance of ECU and Vehicle and Offboard Penetration Testing
Support the development of security testing within the Hardware in The Loop, (HiLs), test rigs supporting Product Engineering to develop further capability in this area
Helping project teams to liaise with preferred suppliers
Reviewing and agreeing to Penetration Test Scopes
Review of Penetration Test Results and inform SOC and CISO of any high/critical risks identified via the risk governance board
Collect, analyse, and prepare reports required for senior management, regulators, and other relevant stakeholders
Work with Management to ensure information security risk findings are reviewed and solutions are implemented, and risks are managed
Lead the escalation and resolution of risk and compliance issues with appropriate stakeholders
Supporting any other identified security testing requirements concerning ECU and Vehicle Penetration Testing
Monitor and measure company compliance with its Security Penetration Policies and Procedures as well as worldwide standards and laws to ensure organizational compliance
WHAT YOU'LL NEED
An individual who can demonstrate good capability in leadership and management
Continually working hard to deliver a modern luxury experience to earn and keep our customer's trust and loyalty
Embracing differences, being empathetic, welcoming challenges together empowering each other to deliver
Building trust by speaking openly and honestly, listening attentively, and treating others respectfully
Taking initiative and using failure as an opportunity to learn. We develop by giving + seeking honest feedback
Making a difference through our results. At Jaguar Land Rover, we innovate and never lose sight of what we want to achieve
An individual who can apply analytical rigour to develop and drive well-thought-out operational plans, collaborate across functions and combine a short-term, pragmatic focus with a strategic vision
An individual who is resilient, energetic and enthusiastic, responds constructively to new ideas and input in a changing business environment
An individual who can challenge existing thinking positively whilst building credibility and trust through experience and personal style
A sophisticated communicator who can communicate directly, clearly and openly
Knowledge, Skills and Experience
Proven Penetration Testing experience and track record of delivery in a field relevant to the role, e.g In-Vehicle Network, (CAN, FlexRay etc.), Embedded systems security, threats and attacks within Infotainment, Telematics, Powertrains
Experience in security assessment and Penetration Testing Tools within Vehicle Electrical Architecture and external interfaces such as Bluetooth, WiFi, and Mobile Communications
Proven experience in Vehicle Diagnostics
Understanding of Systems Engineering Principals, and Requirements development
An ability to think analytically, rigorously and creatively with a commitment to quality and outstanding results
Excellent written and verbal communication skills; ability to confer complex technical and procedural topics in a clear and concise form, confidently presenting to stakeholders
Experience leading engineers from outsourced partners and suppliers
WHAT TO EXPECT
We are looking for a Cyber Security Pen Test Manager for Vehicle and ECU, you will possess Automotive Penetration Testing experience and you will be expected to take a lead role for your area of specialism and will possess the ability to be comfortable leading and directing engineers from outsourcing partners and suppliers.
Jaguar Land Rover applies a Three Line of Defence Model to security and this role will manage and provide oversight of the Product Engineering Penetration Testing activities concerning ECU's and Vehicle testing in support of the Second Line of Defence within the DIGITAL Information Cybersecurity, (ICS), department.
You will need to represent the ICS department in wider business discussions, and show clear traceability through standards, process definition and technical documentation.
Key Accountabilities and Responsibilities
Define Penetration Test Strategy from the 2nd line of Defence viewpoint for the governance of ECU and Vehicle and Offboard Penetration Testing
Support the development of security testing within the Hardware in The Loop, (HiLs), test rigs supporting Product Engineering to develop further capability in this area
Helping project teams to liaise with preferred suppliers
Reviewing and agreeing to Penetration Test Scopes
Review of Penetration Test Results and inform SOC and CISO of any high/critical risks identified via the risk governance board
Collect, analyse, and prepare reports required for senior management, regulators, and other relevant stakeholders
Work with Management to ensure information security risk findings are reviewed and solutions are implemented, and risks are managed
Lead the escalation and resolution of risk and compliance issues with appropriate stakeholders
Supporting any other identified security testing requirements concerning ECU and Vehicle Penetration Testing
Monitor and measure company compliance with its Security Penetration Policies and Procedures as well as worldwide standards and laws to ensure organizational compliance
WHAT YOU'LL NEED
An individual who can demonstrate good capability in leadership and management
Continually working hard to deliver a modern luxury experience to earn and keep our customer's trust and loyalty
Embracing differences, being empathetic, welcoming challenges together empowering each other to deliver
Building trust by speaking openly and honestly, listening attentively, and treating others respectfully
Taking initiative and using failure as an opportunity to learn. We develop by giving + seeking honest feedback
Making a difference through our results. At Jaguar Land Rover, we innovate and never lose sight of what we want to achieve
An individual who can apply analytical rigour to develop and drive well-thought-out operational plans, collaborate across functions and combine a short-term, pragmatic focus with a strategic vision
An individual who is resilient, energetic and enthusiastic, responds constructively to new ideas and input in a changing business environment
An individual who can challenge existing thinking positively whilst building credibility and trust through experience and personal style
A sophisticated communicator who can communicate directly, clearly and openly
Knowledge, Skills and Experience
Proven Penetration Testing experience and track record of delivery in a field relevant to the role, e.g In-Vehicle Network, (CAN, FlexRay etc.), Embedded systems security, threats and attacks within Infotainment, Telematics, Powertrains
Experience in security assessment and Penetration Testing Tools within Vehicle Electrical Architecture and external interfaces such as Bluetooth, WiFi, and Mobile Communications
Proven experience in Vehicle Diagnostics
Understanding of Systems Engineering Principals, and Requirements development
An ability to think analytically, rigorously and creatively with a commitment to quality and outstanding results
Excellent written and verbal communication skills; ability to confer complex technical and procedural topics in a clear and concise form, confidently presenting to stakeholders
Experience leading engineers from outsourced partners and suppliers
About Jaguar Land Rover