Cyber Security Engineer

At Tata Technologies we make product development dreams a reality by designing, engineering and validating the products of tomorrow for the world’s leading manufacturers. Due to our continued growth, we are now recruiting for Cybersecurity Engineer to join our team in Gothenburg, Sweden.

Job Description: Automotive Cybersecurity Engineer (V-Cycle & ASPICE)

Location: Gothenburg, Sweden

Employment Type: Full time

Experience : 3+yrs

Position Overview

We are seeking an experienced and passionate Automotive Cybersecurity Engineer to take ownership of the cybersecurity lifecycle across our next-generation vehicle platforms. In this role, you will manage the complete Cybersecurity V-Cycle from concept and requirements engineering to verification, validation, and release. You will play a pivotal role in ensuring our development processes conform to Automotive SPICE (ASPICE) frameworks and comply with international regulations such as UN R155/R156 and ISO/SAE 21434.

Key Responsibilities:

Cybersecurity V-Cycle Management

Left Side of the V (Concept & Design):

• Perform Threat Analysis and Risk Assessment (TARA) at the vehicle, system, and component levels.
• Define Cybersecurity Goals, Cybersecurity Concepts, and derive technical cybersecurity requirements (System/Software level).
• Collaborate with system architects and software engineers to design secure E/E architectures, secure onboard communication (SecOC), cryptography, and secure boot concepts.

Right Side of the V (Verification & Validation):

• Develop cybersecurity test specifications, test cases, and strategies (including vulnerability scanning, penetration testing, and fuzz testing).
• Oversee and execute cybersecurity verification and validation (V&V) activities on HiL (Hardware-in-the-Loop) rigs, test benches, and prototype vehicles.
• Manage vulnerability tracking, triage, and resolution throughout the development lifecycle.

ASPICE & Process Compliance

• Ensure full traceability of cybersecurity requirements from customer/regulatory levels down to software implementation and test cases.
• Prepare engineering teams and documentation for ASPICE audits and assessments.
• Support the organization in maintaining compliance with ISO/SAE 21434 and obtaining/maintaining the Cybersecurity Management System (CSMS) certification under UN R155.

Supplier & Stakeholder Management

• Define cybersecurity requirements for external Tier-1 suppliers (Cybersecurity Interface Agreement / CIA).
• Review and audit supplier-delivered cybersecurity work products (TARAs, vulnerability reports, and software components).
• Work closely with cross-functional teams, including Functional Safety (ISO 26262), Software Engineering, OTA (Over-the-Air) Updates, and IT/Cloud Security.

Required Qualifications & Experience:

• Education: Bachelor’s or master’s degree in computer science, Electrical Engineering, Cybersecurity, Automotive Engineering, or a related field.
• Experience: 3+ years of professional experience in automotive cybersecurity engineering.
• V-Cycle Mastery: Strong hands-on experience with the V-model development process in an automotive environment.
• Standards & Regulations: Deep understanding of ISO/SAE 21434, UN R155/R156, and Automotive SPICE (ASPICE).
• TARA Expertise: Proven experience in conducting Threat Analysis and Risk Assessments (TARA) using tools like Medini Analyze, Ansys, or similar.

Technical Skills:

• Familiarity with automotive communication protocols (CAN/CAN-FD, LIN, Automotive Ethernet, FlexRay).
• Knowledge of automotive security mechanisms (SecOC, TLS, IPSec, HSM/SHE, Secure Boot, Cryptographic algorithms).
• Experience with diagnostics protocols (UDS ISO 14229) and security access.
• Languages: Fluent in English (written and spoken). Swedish language skills are a plus but not mandatory.

Preferred Qualifications (Nice to Have):

• Certified Automotive Cybersecurity Professional (CACSP) or similar certifications.
• Experience with ASPICE provisional/competent assessor training
• Familiar with AUTOSAR (Classic/Adaptive) security modules.
• Experience with automotive penetration testing or ethical hacking.