ESA Airbag Cyber Security Manager

Company Description

Bosch Global Software Technologies (BGSW), is a 100% owned subsidiary of Robert Bosch GmbH, one of the world’s leading global supplier of technology and services, offering end to end engineering, IT and Business solutions.

With over 19,500 associates, BGSW is the largest software development center of Bosch outside Germany, indicating we are the Technology Powerhouse of Bosch in India. We have a global footprint with presence in US, Europe and the Asia Pacific region. BGSW is ISO 9001:2008 certified (2012), appraised at CMMI-L5 as per version 1.3 (2011), ASPICE - level3 based on version 2.5 and ISO 15504- 5 and 7, and also ISO 27001 with seven state-of-the-art facilities spread across Bangalore, Coimbatore, Pune and Hyderabad in India, Ho Chi Minh City in Vietnam and Guadalajara in Mexico, ISO/IEC 20000-1:2011 certified (2014).

We nurture, build and sustain enduring customer relationships to enable direct operational and strategic benefits to our customers. We make it happen through qualified, motivated and flexible professional associates, who uphold the heritage and values of Bosch - time-tested over 125 years of a successful journey; a journey marked by quality, reliability and innovation of service to enhance the interest of our customers and the community we live in.

We provide solutions for businesses in primarily three areas:

•Engineering Services
•IT services
•Business services

Our focal industries:

•Automotive industry
•Industrial Technology
•Consumer Goods and Building Technology.

Job Description

Security Manager:

 The Security Manager is part of the project team, supporting the creation and maintenance of security-relevant work products and coordinating security process activities within the project. This role enables the Airbags ECU project to achieve the required product security based on requirements from Customer, Bosch and Industry.

Knowledge and skills

• At least 4 years of experience in Automotive Domain
• Knowledge of Requirement management 
• Basic knowledge of Quality gates
• Moderation skills
• Good cross-functional knowledge 
• Good knowledge of system/software architecture concepts, methods and tools
• Comprehension and analysis ability of complex systems
• Knowledge of risk management methods and Risk Assessment
• Basic knowledge in validation and testing
• Knowledge of quality and safety requirements 
• Continuous learning mindset
• Awareness on AUTOSAR framework/standards
• Good knowledge in Agile/Scrum methodologies

Below skills are added advantage:

• Knowledge of Security engineering process, TARA, Security concept.
• knowledge of the development processes related to system architecture (e.g. Requirements Development, Technical Solution and Product Integration)
• ISO21434 and UNECE R155, R156 is preferred
• Penetration and Fuzz test overview
• Threat and Risk Analysis hands on

Tools Knowledge

• Office, Doors

Activities:

• Ensure the Security Engineering Process is followed in project 
• Creation and maintenance of security-relevant work products and coordinating security process activities within the project.
• Customer Requirement analysis and Feasibility analysis
• Perform Threat and Risk analysis
• Create and develop Cybersecurity Concept
• Perform Residual risk analysis
• Security assessment
• Create Development interface agreement with Customer and Suppliers
• Creation of System requirements, System architecture and System Design for Security features
• Create and maintain Cyber security plan
• Compile Cyber Security case
• Determine Security state of art
• Define Verification Criteria for system requirements
• Support in Technical Customer Documentation
• Technical support to Project and Delivery team on Security topics
• Support Data protection assessment
• Support Penetration test

Qualifications

B.E  or M.Tech

Additional Information

•Strong communication skills
•Experience on Problem and Change request Management
•Strong commitment and desire to learn and grow
•Strong knowledge in requirements engineering and be able to deep dive into topics
•Good knowledge in Agile methodologies
•Good knowledge of Embedded System
•Experience: 6-10 years