Cyber Security Architect
CAIRO - CAI1
Valeo
Valeo is an automotive supplier and partner to automakers worldwide. As a tech company, we design innovative solutions for smart mobility.Valeo is a tech global company, designing breakthrough solutions to reinvent the mobility. We are an automotive supplier partner to automakers and new mobility actors worldwide. Our vision? Invent a greener and more secured mobility, thanks to solutions focusing on intuitive driving and reducing CO2 emissions. We are leader on our businesses, and recognized as one of the largest global innovative companies.
Accountability- Provide Cybersecurity architecture best practices and Cybersecurity requirements in the other fields
- Define/update Cybersecurity architecture best practices based on Valeo CSMS (CyberSecurity Management System), Cybersecurity standards, Valeo Information Systems environment and other product disciplines when applicable.
- Design, support the implementation and control the Cybersecurity of architectures
- Determine Cybersecurity requirements in a way to fulfill business objectives and Valeo Cybersecurity requirements
- Plan, research and design robust Cybersecurity architectures
- Including full product or information management covering the full lifecycle as detailed in the CSMS, whenever applicable
- Including DRP (Disaster Recovery Plan), log management, potential integration issues and cost constraints, when applicable
- Analyze and assess external components (e.g. libraries, software, hardware) and internal item (e.g. IS/IT solutions) in his/her scope of responsibility, according to Valeo Cybersecurity standards
- Ensure the Cybersecurity of some Valeo critical systems (e.g. platform, solution, service)
- Anticipate possible Cybersecurity risks, identify areas of weakness, and respond effectively to possible Cybersecurity breaches
- Control final Cybersecurity structures to ensure they behave as expected (including design review)
- Plan Cybersecurity breach tests (e.g. stress tests, pentests)
- Cybersecurity watch
- Remain up to date with the latest Cybersecurity systems, standards, authentication protocols, Cybersecurity solutions, software/component vulnerabilities and threats
- Design, support the implementation and control the Cybersecurity of architectures
- Acquire a deep understanding of technology (from modules up to the vehicle in its communicating environment, Information Systems, and/or other related domains)
- Perform risk assessments related to the context:
- Third-Party Risk Assessment
- Project Information Risk Assessment
- Product and/or Service Risk Assessment
- Depending on the project or product, design concept / software / components/ infrastructure / Cloud based Cybersecurity architectures
- Update the risk assessment whenever it is required (e.g. by an evolution of the requirements/context/product or service use case)
- Control that the Cybersecurity requirements are fulfilled during all the phases of the BCP (Business Continuity Plan) and DRP (Disaster Recovery Plan) when applicable
- Ensure the Cybersecurity of some Valeo critical systems (e.g. platform, solution, service)
- Follow the critical systems (platform, solution, service) during their whole life cycle:
- Ensure Cybersecurity has been taken into account in the RFIs/RFQs/RFPs (Request For Information/Quotation/Proposal)
- Advise on the architecture
- Write/validate the Cybersecurity requirements
- Perform the Third-Party Risk Assessments (when applicable)
- Participate to the bidders’ defense (when applicable)
- Contribute to and check the contractual Cybersecurity clauses. Liaise with the Legal department whenever it is needed. Report to the project manager or to the management the risks of clause non-execution.
- Perform Project Information Risk Assessments (when applicable)
- Perform the Product, platform and/or Service Risk Assessment (when applicable)
- Advise on the detailed architecture (e.g. review, reuse, change)
- Control the Cybersecurity requirements
- Before the Go-Live and during the Run
- Before the SoP (Start of Production)
- Whenever contractual obligations require it
- Follow or audit specific projects upon request of the Group Cybersecurity VP or delegates
- Report any situation that would put Valeo at risk
- Cybersecurity watch
- Share his/her Cybersecurity watch within the Cybersecurity organization
- Upon request, provide assistance on other critical topics (e.g. incidents, vulnerabilities)
- Provide technical expertise
- Ensure the Cybersecurity of some Valeo critical systems (e.g. platform, solution, service)
- Advise on possible evolutions. Propose/contribute to a roadmap for improvement. Propose subjects for research activities with universities or within funded projects (when applicable).
- Assist in the Supplier selection.
- Assist the other Cybersecurity Officers for the projects, products, platforms, services whenever needed
- Upon request, provide assistance on other critical topics (e.g. incidents, vulnerabilities)
- Advise on actions to be done
- Assist in post-event analysis
- Other
- Report any situation that would put Valeo at risk
Required: Master’s degree in Computer Science and/or Cybersecurity
Optional: Certification(s) related to architecture such as:
- SABSA (Sherwood Applied Business Security Architecture)
- CISSP-ISSAP (Information Systems Security Architecture Professional)
- CISSP (Certified Information Systems Security Professional)
- CSSA (Certified SCADA Security Architect)
- >10 years of relevant experience in Cybersecurity, in-depth knowledge of security strategies and architectures
- Extensive experience in information or embedded Cybersecurity and/or Information Systems / IT risk management with a focus on Cybersecurity, performance and reliability
- Solid understanding of security protocols, cryptography, authentication, authorisation and security
- Experience in web / mobile and application development
- Experience implementing multi-factor authentication, single sign-on, identity management or related technologies
- Development skills to automate security tooling
- Embedded software or electronics design skills
- For IS/IT/ICS, knowledge in:
- Windows, Unix-like operating systems
- Perimeter security controls: firewall, IDS/IPS, network access control and network segmentation
- Router, switch and VLAN security
- Wireless security
- Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies
- Cloud platforms: Amazon, Google, Azure
- Serverless functions, Cloud architecture
- Software security standards
- For product/platform/service, knowledge in:
- Understanding of ISO/SAE 21434 and UN R155 automotive cybersecurity
- Operating systems: Autosar, Automotive Linux, other real-time OS or hypervisors for embedded products
- Cloud platforms: Amazon
- Cryptography usage
- Network architecture, including gateways, firewalls, IDPS (Intrusion Detection/Protection System), switches mainly for automotive protocols such as automotive Ethernet, CAN, LIN (vehicle communication bus/protocol).
- Telecommunication architecture and protocols, including V2X (vehicle to vehicle or to infrastructure), 3G-5G, wi-fi, Bluetooth, etc
- Production: key management, flashing machines, HSM (hardware security module), server architecture
- Electronics: microcontrollers (ARM architecture, Trusted Zone), embedded memory storage, PCB high level design
- Ability to interact with a broad cross-section of personnel to explain and enforce Cybersecurity measures
- Excellent written and verbal communication as well as business acumen and commercial outlook
- Client focus, and ability to work independently or as part of a collaborative team
- Knowledge of risk assessment methodologies:
- Third party auditing
- Cloud risk assessment methodologies
- Architecture design auditing
Job:
Cybersecurity Architect/ SpecOrganization:
RO/PL R&DSchedule:
Full timeEmployee Status:
RegularJob Type:
Job Posting Date:
2024-03-31Join Us !
Being part of our team, you will join:
- one of the largest global innovative companies, with more than 20,000 engineers working in Research & Development
- a multi-cultural environment that values diversity and international collaboration
- more than 100,000 colleagues in 31 countries... which make a lot of opportunity for career growth
- a business highly committed to limiting the environmental impact if its activities and ranked by Corporate Knights as the number one company in the automotive sector in terms of sustainable development
More information on Valeo: https://www.valeo.com
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Azure CISSP Cloud Computer Science Cryptography CSSA DDoS DNS Firewalls ICS IDS Intrusion detection IPS Linux R&D Risk assessment Risk management SCADA UNIX VPN Vulnerabilities Windows
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs