Sr. Cybersecurity Validation Engineer

Posted:
12/23/2024, 11:49:42 AM

Location(s):
Michigan, United States ⋅ Novi, Michigan, United States

Experience Level(s):
Senior

Field(s):
IT & Security

At Polaris Inc., we have fun doing what we love by driving change and innovation. We empower employees to take on challenging assignments and roles with an elevated level of responsibility in our agile working environment. Our people make us who we are, and we create incredible products and experiences that empower us to THINK OUTSIDE.

JOB SUMMARY:

Polaris, a global powersports leader, is looking for a cybersecurity engineer responsible for the validation of the embedded controls system which includes the integration of ECU hardware and software. Your primary responsibility is the development and execution of tests based on requirements, the analysis of the test results and root causes, and seeing through the mitigations to the identified issues.  You will design and develop any necessary processes, procedures, and best practices to support automated, bench, and/or on-vehicle validation.  You will be responsible for cybersecurity functional validation and fuzz testing, and support penetration testing.

ESSENTIAL DUTIES & RESPONSIBILITIES :

  • Work with control systems engineers to plan test script development and software validation schedules. 
  • Manage multiple ECU validation schedules and projects simultaneously. 
  • Review and understand cybersecurity requirements and the desired functionality of the vehicle system. 
  • Design test cases and develop test scripts for software validation. 
  • Setup, execute, and analyze the results of the software validation and report results to stakeholders. 
  • Execute fuzz testing, triage the test results, and work with cybersecurity team to prioritize the identified issues.
  • Review internal/external supplier test reports and work with suppliers to fix the identified issues.
  • Support penetration testing from testing tools, benches, setup, software, calibration, technical standpoints.
  • Produce ISO/SAE 21434 compliant work products
  • Ensure that cybersecurity validation is completed as required by Product Cybersecurity Chief Engineer, suppliers or test labs. 

Additionally, you may: 

  • Develop additional software tools to support cybersecurity test automation. 
  • Participate in TARA and cybersecurity discussions. 
  • Review  cybersecurity requirements and support design reviews to improve cybersecurity. 
  • Support development of end of line testing for cybersecurity.
  • Support analysis of cybersecurity intelligence related to vulnerabilities, hacking tools and methods, and contribute to vulnerability database.
  • Manage existing cybersecurity testing tools, investigate new cybersecurity testing tools and methods, and support refinement of cybersecurity validation strategies.
  • Participate in and support Auto-ISAC working groups.

Minimum Qualifications:

  • B.S. degree in Electrical Engineering, Computer Engineering, Computer Science, or Software Engineering preferred; would consider candidates with a B.S. degree in IT Security, Physics, or Mathematics with applicable experience in an automotive related software testing role. 
  • Understanding of vehicle control systems, such as telematics, infotainment, connected features, ADAS, engine, powertrain, chassis, body, etc.. 
  • 5 years’ experience in automotive/embedded system validation Experience with fuzz testing, penetration testing or a combination of these areas
  • Experience with validating cybersecurity controls such as secure boot, secure reprogramming, security access, secure diagnostics, security gateway, IDS/IPS, code signing, authentication, encryption, etc.
  • Understanding of cybersecurity regulations and standards such as UNR 155/156, CRA, ISO/SAE 21434, etc.
  • Knowledge in fundamental cybersecurity principles and cybersecurity concepts
  • Self-starter with minimum supervision and team player with leadership skills

Preferred Qualifications:

  • Advanced degree in cyber security preferred

  • Cybersecurity adversarial mindset from an attack’s perspective.

  • Experience in penetration testing vehicle systems, embedded systems, IoT devices, medical devices.

  • Experience with Bootloaders, OTA, PKI, Python scripting, HIL system, dSPACE, ETAS, NI tools, Git, commend line/shell, CCP/XCP, ASAM MCD3-MC, Codebeamer

  • Experience with vehicle communication protocols such as CAN, CAN FD, J1939, OBD-II, Ethernet, UDS, TLS, TCP/IP, wireless protocols (e.g., Bluetooth, Wi-Fi, Cellular, RF, etc.)  

  • Experience with automated test development and programming

We are an ambitious, resourceful, and driven workforce, which empowers us to THINK OUTSIDE.  Apply today!

At Polaris we put our employees first, by offering a holistic approach to their health and financial wellbeing.  Polaris is proud to offer competitive compensation, including a market-leading profit-sharing plan that is fundamental to our pay-for-performance culture. At Polaris, employees are owners of the company through company contributions to our Employee Stock Ownership Plan and discounted employee stock purchases plan. Employees receive a generous matching contribution to 401(k), financial wellness education and consultation to plan for their financial future. In addition to competitive pay, Polaris provides a comprehensive suite of benefits, including health, dental, and vision insurance, wellness programs, paid time off, gym & personal training reimbursement, life insurance and disability offerings.  Through the Polaris Foundation and our Polaris Gives paid volunteer time off, we support employees who actively volunteer their time, efforts, and passions to improve the health and wellbeing of the communities in which they live, play and work. Employees at Polaris drive our success and are rewarded for their commitment.

About Polaris

As the global leader in powersports, Polaris Inc. (NYSE: PII) pioneers product breakthroughs and enriching experiences and services that have invited people to discover the joy of being outdoors since our founding in 1954. Polaris' high-quality product line-up includes the Polaris RANGER®, RZR® and Polaris GENERAL™ side-by-side off-road vehicles; Sportsman® all-terrain off-road vehicles; military and commercial off-road vehicles; snowmobiles; Indian Motorcycle® mid-size and heavyweight motorcycles; Slingshot® moto-roadsters; Aixam quadricycles; Goupil electric vehicles; and pontoon and deck boats, including industry-leading Bennington pontoons. Polaris enhances the riding experience with a robust portfolio of parts, garments, and accessories. Proudly headquartered in Minnesota, Polaris serves more than 100 countries across the globe.  www.polaris.com  

EEO Statement


Polaris is an Equal Opportunity Employer and will make all employment-related decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, marital status, familial status, status with regard to public assistance, membership or activity in a local commission, protected veteran status, or any other status protected by applicable law.