Focus on Mobile App and Browser-based products’ cybersecurity and act as cybersecurity SME Co-lead Vehicle/API Security Operations Center system design, development, deployment, and operations Provide cybersecurity technical services including but not limited to developing cybersecurity specifications, performing threat and risk assessment, performing penetration testing, and providing recommendations/best practices for vulnerability remediation Design and develop new capability of VSoC and ASoC

Education Qualification

Bachelor’s degree in computer science, Software Engineering or Electronics/Electrical Engineering

Number of Years of Experience

3 years in Software design, development, and deployment 2+ years of in-vehicle/or mobility cybersecurity experience

Leadership Skills

Proven experience in working and collaborating with cross-functional teams Proven experience in participating in a medium or large-scale software development project Proven experience in leading small or medium scale of product cybersecurity

Functional/Technical Skills

2+ years of software development experience in Java, Python, Scala, SQL Language 2+ years of Mobile App, H5 and Mini-program cybersecurity work experience in specific to Threat Analysis and Risk Assessment and Penetration Test Familiar with the implementation of common encryption and decryption algorithms, and understand the mechanisms and principles of security modules such as Hardware Security Module, Secure Hardware Extension, and TEE In-vehicle Cybersecurity experience in terms of writing cybersecurity specifications, performing threat analysis and risk assessment, conducting penetration testing Familiar with Linux and QNX systems, such as: SELINUX permission configuration, iptables, file system Establish a collaboration framework with Mobile App and Digital team and ensure security practices, principles and standards are integrated into software development and delivery process Co-deliver Vehicle/API Security Operations Center system design, development, deployment, and operations Perform Threat Analysis and Risk Assessment (TARA) based on the product design documents and work closely with product teams in remediating the identified security risks from TARA result Perform Static and Dynamic Application Security testing on Mobile App and B2C products and identify any security vulnerabilities Provide recommendations/best practices in remediating security vulnerability