Senior Embedded Cybersecurity Engineer

Location
Phoenix, Arizona
Status
Open

Description

You’re passionate about a zero-emissions future and want to build something special.  You want to own your space but work with talented, like-minded people on important projects.  The pace doesn’t scare you - it excites you.  Quality and integrity matter to you.

We feel exactly the same way.

Drive Forward.  Introduce yourself to us and let’s start a conversation.

We’re on the lookout for a Senior Embedded Cybersecurity Engineer who will own the development of security-related processes to ASPICE level 2 and complete the security case for Nikola's controllers in our groundbreaking Tre BEV.  In this key role, you will be a leader in designing and executing our cybersecurity features, utilizing your experience and domain knowledge to guide the organization.

We’re looking for the engineer that always has the corner cases in mind, can break designs with ease, and is obsessed with finding the vulnerabilities in a solution.  Someone who knows the best practices in security designs, but also understands the nuances that lead to pitfalls in implementations.  An engineer that can get into the low level details of a debug session with an embedded programmer and also talk through multi-system flow diagrams with systems engineers.

You will:

  • Ramp up quickly on our controller designs and vehicle-level concepts
  • Create tailored concepts to meet the requirements of the Tre FCEV
  • Establish yourself as the primary point-of-contact for technical cryptography or security algorithm discussions with suppliers
  • Analyze in-vehicle security assets to create threat and risk assessments
  • Work across teams on functional designs to produce security concepts
  • Provide technical guidance on security algorithms and cryptographic solutions
  • Interface with suppliers to oversee security-related requirements definition, concept approvals, and integration activities
  • Analyze data and control flow across many domains to identify system weak points
  • Create verification and validation plans for the demonstrable suitability of security concepts
You Have:
  • A growth mindset that stays on top of new technologies
  • Bachelor's degree in Computer Engineering, Computer Science, Electrical Engineering or related field, MS in Computer Engineering or Computer Science with specialization in cybersecurity preferred
  • 10 years of device-level cybersecurity experience or 5 years and a related Master's degree
  • A working understanding of asymmetric and symmetric cryptography algorithms and their use in key derivation functions and x509v3 certificate handling  
  • Expertise in threat and risk analysis for the definition of cybersecurity requirements
  • Knowledge of the security-related product development lifecycle
  • Experience with SysML or other modelling based system engineering methods
  • Expertise in embedded system architecture and automotive tools & technologies
  • Solid soft skills - need to collaborate across the organization and evangelize the benefits of security
  • Experience with SAE J3061 or ISO 21434 would be a huge plus, as would
  • Experience with typical automotive ECU security (SHE, EVITA, typical Autosar security designs), and
  • Knowledge of embedded device security features around: boot, firmware updates, logging, communication, debug/production/general lifecycle management, and
  • Familiarity with HSM/TEE software and hardware architectures

 

Candidates must have current U.S. work authorization or be TN eligible from Mexico or Canada.  This position is not eligible for CPT or OPT.

#LI-AH1


Equal Employment Opportunity statement (EEO)

Nikola Motor Company™ is committed to a policy of equal employment opportunity. We recruit, employ, train, compensate, and promote without regard to race, color, age, sex, ancestry, marital status, religion, national origin, physical or mental disability, sexual orientation, gender identity, medical condition, pregnancy, veteran status, genetic information or any other classification protected by state or federal law.


To all recruitment agencies: Nikola is not responsible for any fee related to unsolicited resumes from 3rd party staffing and recruiting agencies. No fee will be paid for candidates who apply and claim to be represented by an agency. Any unsolicited resumes, CVs, or other candidate information submitted by an agency will become the property of Nikola, and no fee will be paid in the event such candidate is hired.