Senior Automotive Cybersecurity Specialist
About the role
Oversees standards, methods, processes, and implementation of vulnerability and incident management for all E/E systems in the US (in coordination with Munich), with authority to order mitigation, lead incident treatment, escalate non-compliance, and schedule security audits.
Budget and Resource Management: Manages budget (aligned with Munich/BMW NA) for environmental, vulnerability, and incident analyses, including external tools and test support.
Incident and Vulnerability Handling: Authorized to implement immediate measures for critical incidents impacting vehicle fleet/customers and coordinate mitigation with relevant departments and CoCs.
Development and Regulatory Compliance: Prepares release recommendations for cybersecurity focus areas to achieve regulatory development goals.
Technology and Threat Monitoring: Conducts technology scouting and monitors hacker activities/threat scenarios in the US, integrating findings into automotive security processes and threat intelligence.
Awareness and Collaboration: Supports industrialization of new security approaches, co-develops incident management scope with Munich, and promotes automotive security awareness in junior programs, dealerships, and technicians.
Responsibilities
- Oversees standards, methods, processes, and implementation of vulnerability and incident management for all E/E systems in the US (in coordination with Munich), with authority to order mitigation, lead incident treatment, escalate non-compliance, and schedule security audits.
- Budget and Resource Management: Manages budget (aligned with Munich/BMW NA) for environmental, vulnerability, and incident analyses, including external tools and test support.
- Incident and Vulnerability Handling: Authorized to implement immediate measures for critical incidents impacting vehicle fleet/customers and coordinate mitigation with relevant departments and CoCs.
- Development and Regulatory Compliance: Prepares release recommendations for cybersecurity focus areas to achieve regulatory development goals.
- Technology and Threat Monitoring: Conducts technology scouting and monitors hacker activities/threat scenarios in the US, integrating findings into automotive security processes and threat intelligence.
- Awareness and Collaboration: Supports industrialization of new security approaches, co-develops incident management scope with Munich, and promotes automotive security awareness in junior programs, dealerships, and technicians.
Requirements
- Master’s degree in computer science or electrical engineering, preferred post-grad education/PhD.
- 3 – 5 years of professional experience in the field of (IT) security.
- Knowledge in the areas of specialization specified above or adequate training/experience.
- Extensive practical experience in project management.
- BMW experience appreciated.
- Knowledge in the field of "ethical hacking" in particular in embedded and automotive-specific protocol areas, of (wireless) communication protocols with IoT or smartphone devices, and backend as well as electronics, software development and reverse engineering.
- Broad knowledge of components, procedures and specialist processes in the ProEV.
- Comprehensive understanding of strategic positions, overall vehicle, information (protection), security and data protection contexts.
Qualifications
- Master’s degree in computer science or electrical engineering, preferred post-grad education/PhD.
- 3 – 5 years of professional experience in the field of (IT) security.
- Knowledge in the areas of specialization specified above or adequate training/experience.
- Extensive practical experience in project management.
- BMW experience appreciated.
- Knowledge in the field of "ethical hacking" in particular in embedded and automotive-specific protocol areas, of (wireless) communication protocols with IoT or smartphone devices, and backend as well as electronics, software development and reverse engineering.
- Broad knowledge of components, procedures and specialist processes in the ProEV.
- Comprehensive understanding of strategic positions, overall vehicle, information (protection), security and data protection contexts.
Skills
- Master’s degree in computer science or electrical engineering, preferred post-grad education/PhD.
- 3 – 5 years of professional experience in the field of (IT) security.
- Knowledge in the areas of specialization specified above or adequate training/experience.
- Extensive practical experience in project management.
- BMW experience appreciated.
- Knowledge in the field of "ethical hacking" in particular in embedded and automotive-specific protocol areas, of (wireless) communication protocols with IoT or smartphone devices, and backend as well as electronics, software development and reverse engineering.
- Broad knowledge of components, procedures and specialist processes in the ProEV.
- Comprehensive understanding of strategic positions, overall vehicle, information (protection), security and data protection contexts.
Benefits
- Medical, Dental, and Vision insurance.
- 401(k) with Company match and Retirement Income Account.
- Employee vehicle program.
- Bonus eligibility.
- Paid Parental Leave.
- Generous PTO and Company paid holidays.
- Relocation is available for this position.
Pay
The expected salary range for this position is $62,500.00 - $125,000.00. The selected candidate’s education, skills, experience, and location will be used to determine the final salary offer.
Schedule
This position requires regular onsite attendance at a BMW office/facility with remote work capability (hybrid).