Cybersecurity Incident Response Tech Lead
Volvo Business Services AB / Säkerhetsjobb / Göteborg
2024-02-17
Visa alla säkerhetsjobb i Göteborg,
Mölndal,
Partille,
Kungälv,
Lerum eller i
hela Sverige Visa alla jobb hos Volvo Business Services AB i Göteborg,
Mölndal,
Kungsbacka,
Borås,
Trollhättan eller i
hela Sverige "Founded in 1927, the Volvo Group is committed to driving prosperity and shaping the future landscape through sustainable transport, mobility, and infrastructure solutions. By offering trucks, buses, construction equipment, power solutions for marine and industrial applications, financing and services that increase our customers' uptime and productivity.
Our headquarters are in Gothenburg, Sweden. Volvo Group shares are listed on Nasdaq Stockholm."
Are you the kind of person who is passionate about cybersecurity both process and product implementation? Would you like to use your passion in the automotive industry and be part of the cybersecurity vehicle type approval?
The Team
Our team, "Product Cybersecurity Management System (PCSMS)" is in the heart of a great transformation. We work with developing and improving our product cybersecurity management system (PCSMS) in a continues manner along with coordinating the Cybersecurity work according to R155 and ISO/SAE 21434 along all teams within Volvo Group Truck Technology (GTT), we also supporting teams to do high level attack vector analysis and vehicle TARA analysis to facilitate releasing work products according to state of the arts.
As part of our continuous improvement effort, we are looking for qualified Cybersecurity Incident Response Tech. Lead to join our innovative, high-energy team. In this role you will lead the Incident Response Team to respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide security services to safeguard highly sensitive data as well as work hands-on with detection systems and vulnerability analysis tools to respond to potential threats to our products.
The main responsibilities entailed in this role are:
* Continuously monitor threats and risks to the vehicle product especially post SOP until End-of-Life
* Secure early detection of cybersecurity issues through analysis of vehicle security data and CTI
* SOC and VSOC monitoring
* Perform controlled simulated attacks on systems to evaluate their security defences and identify areas for improvement.
* Identify and manage vulnerabilities and provides lessons learned to further development projects
* Defines thresholds on which a cybersecurity event will be triggered
* Coordinates investigation of the technical impact, the scale of the technical impact, and other technical analyses
* Identifies, analyze, and remediates cybersecurity events and incidents
* Conducts initial technical analysis resulting in a confirmation or rejection of the event as a PCS incident
* Conducts classification of a confirmed PCS incident to indicate its impact, urgency, and prioritisation.
* Triggers and follows-up short-term solution development and implementation from the technical side
* Supports long-term solution decisions and actions from a technical perspective
* Coordinates communication with internal technical stakeholders
* Supports the update of the PCS Incident Response Report
* Drives the post-incident review activities
* Manages the cybersecurity risk methodology used in the TARA
* Manages the cybersecurity aspects of tools that can impact the cybersecurity risks on the vehicle
* Lead the team and coach/mentor other in the team.
Who are you!
As a person, you have a holistic view, out of the box mindset, broad technical know-how combined with very good people skills and a strong belief in agile methods. You have a strong ability to inspire, develop and motivate individuals and teams.
You are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis. We value broad and deep technical knowledge, specifically in the fields of forensics, malware analysis, network security, application security, threat hunting, and threat intelligence.
Required qualifications:
* MSc. in Computer Science, Cybersecurity, System engineering
* Extensive experience (8+ years) and best practice understanding in the field of automotive cyber security, including risk management, incident response, and security vulnerability management, CTI, VSO
* Cybersecurity verification and validation and Hacking knowledge is a plus
* Experiences in TARA analysis
* Knowledge of ISO 21434 and R155 is a plus
* Knowledge of automotive and embedded system engineering
* Technical depth in conducting penetration testing, vulnerability assessments, and security audits to identify and address potential vulnerabilities, digital forensic, malware analysis, threat hunting, etc
* Understanding of attacker exploit techniques and their remediation
* Experiences in tool set up
* Proficiency in data analysis
* Ability to work with high degree of autonomy
* Hands on by scripting and previous experience of onboard and offboard technologies within intrusion detection, network security controls and threat intelligence
* Excellent leadership and communication skills, with the ability to effectively collaborate with cross-functional teams and communicate complex security concepts to both technical and non-technical stakeholders.
If you have any questios, please contact Group Manager Cybersecurity Team. Email:
zhafira.magnfalt@volvo.com We value your data privacy and therefore do not accept applications via mail.
Ersättning Undefined
Så ansöker du Sista dag att ansöka är 2024-02-29
Klicka på denna länk för att göra din ansökan Arbetsgivarens referens Arbetsgivarens referens för detta jobb är "4707-42265296".
Omfattning Detta är ett heltidsjobb.
Arbetsgivare Volvo Business Services AB (org.nr 556029-5197)
Arbetsplats Volvo Group
Kontakt Smita Shree
+46 739029470 Jobbnummer 8477743