Security Architect

Who are we?

Argus Cyber Security is a global leader in the automotive cybersecurity industry. We protect drivers & manufacturers from cyber attacks on their vehicles. We use top-notch technology & have several products for inside & outside the car. Our growing team is built of talented thinkers and we are always looking for more!

Why Argus?

• You can be part of a leading company in the automotive industry
• You can help save lives
• You can work with cool challenging technology
• You can make an impact & help change the world

Role Overview

Help shape future automotive security architectures by analyzing future designs, use cases, and architectures, identifying potential security gaps, and suggesting appropriate solutions. Work closely with leading automotive companies and dive into the details of embedded system design, automotive networks and architectures, and operating system security to design cost-effective security strategies and implementations.

In your work, you’ll be part of a team that consults OEMs and Tier#1 on raising the level of their cyber security. During this consultancy, you will be required to:

• Perform Threat Analysis and risk assessment - TARA, mostly according to ISO-21434. Work with threat modeling tools and more.
• Create and write security requirements.
• Support organizations on their journey to compliance
• Be part of a highly professional group.

Key Responsibilities

• Review and analyze complex automotive systems - in-vehicle networks and components, embedded systems, OTA update systems, and more.
• Review and analyze automotive communication protocols, security regulations, and standards.
• Track and analyze cybersecurity trends, and emerging technologies.
• Perform security threat analysis and risk assessments, and develop security concepts and security requirements for automotive systems and networks.
• Design secure architectures and security controls.
• Consult, present, and work with OEMs and Tier-1 R&D teams on various security projects.
• Create processes and procedures to support regulation; ISO-21434, UNR-155.

• 3+ years of experience with embedded systems, from both an HW and SW perspective, including topics like microcontrollers, HSMs, secure boot, access control, exploit mitigation techniques, ect.
• Knowledge of communication protocols.
• Knowledge of cryptographic algorithms and secure protocols.
• Experience with analyzing complex systems from a cybersecurity perspective.
• Familiarity with regulation processes.
• Experience with threat analysis and risk assessment.
• Excellent written and verbal communication in English
• High self-learning abilities and a “get-things-done” attitude.

• Offensive security background.
• Knowledge and experience in the following standards / methods:
• ISO 21434, UNECE R155, JASPAR
• A-SPICE
• Cyber Security Management Systems (CSMS) and related processes, e.g. ISO/IEC 27000:2018
• Risk Management Frameworks, e.g. ISO 31000, NIST Cybersecurity Framework, NIST SP 800-30 Risk Management Guidelines
• Experience in Audit methodologies - auditor/assessor credentials is a plus