Cyber Security Architect

AXISCADES is a leading, end to end engineering solutions and product company. We bring expertise that caters to the digital, engineering, and smart manufacturing needs of large enterprises. With decades of experience in creating innovative, sustainable, and safer products worldwide, AXISCADES delivers business value across the entire engineering life cycle. Our deep domain expertise and engineering solution portfolio covers the complete product development life cycle from concept evaluation to manufacturing support and certification for the aerospace, defence and advanced manufacturing sectors. AXISCADES is headquartered in Bangalore and has offices across India, North America, Europe and the Asia Pacific region.

Key Responsibilities:

• Act as a Senior Cyber Security Architect supporting the lead cyber security architecture for Infotainment, Connectivity, and digital cockpit domains across automotive vehicles.
• Define, deliver, and govern the cyber security architecture for multiple ECUs, platforms, and vehicle programs, providing lifecycle support across concept, design, implementation, test, manufacturing, and production.
• Own and sign off Threat Analysis and Risk Assessment (TARA) activities and associated cyber security work products for the domain.
• Define cyber security architectures, concepts, and requirements covering: Platform, OS, middleware, applications, and services; Mixed criticality and hypervisor-based environments.
• Design and review security solutions for embedded automotive platforms including: AUTOSAR Classic, Android Automotive OS, QNX and Linux.
• Define and govern secure boot, secure update (OTA/FOTA), and key management architectures.
• Design and review secure manufacturing and provisioning processes, including key injection and secure flashing.
• Provide hands on architectural support to implementation and integration activities, working closely with software, systems, and integration teams.
• Support and review security verification, validation, and test activities, including penetration testing, vulnerability analysis, and remediation activities.
• Lead and facilitate threat modelling and TARA workshops with engineering teams and Tier 1 suppliers.
• Own and manage domain level vulnerability management, including risk triage and mitigation strategy definition.
• Define and review network and communications security architectures, including: In vehicle and external network segmentation and zoning; Firewalls and access control mechanisms; Secure communication protocols (TLS, IPsec, MACsec); Authentication, authorization, and access control (DAC/MAC) models.
• Ensure cyber security designs and activities comply with applicable automotive standards and regulations.
• Work closely with vehicle program leadership, engineering and product teams, Tier 1 suppliers and technology partners, business leaders and senior technical decision forums.
• Act as a key technical contributor to cyber security decision making, without direct delivery ownership.
• Mentor and technically guide junior cyber security architects and engineers.

Must Requirements:

• Bachelor’s or Master’s degree in Computer Science, Cyber Security, Electronics, or a related technical field.
• 12+ years of experience in cyber security, with a strong automotive background.
• Proven experience in a senior or lead cyber security architecture role within automotive or complex embedded systems.
• Strong practical knowledge and experience with: ISO/SAE 21434, UNECE R155 and R156, ISO 27001.
• Hands on experience designing and supporting: Secure boot and chain of trust, Secure software and firmware updates (OTA/FOTA), Key management systems, PKI, and certificate lifecycle management.
• Experience providing architecture plus implementation and test support, not limited to documentation or governance.
• Strong technical understanding of: Embedded automotive ECUs and system architectures, AUTOSAR Classic security concepts, Android Automotive OS security, POSIX based operating systems (QNX, Linux), Hypervisors and mixed criticality environments.
• Solid understanding of network and communications security, including: Firewalls, access control, and segmentation; TLS, IPsec, and MACsec.
• Comfortable working with engineering teams in environments where automotive software development maturity is evolving.
• Strong communication skills, able to explain complex security concepts to both technical and non-technical stakeholders.

Preferred:

• Experience delivering security solutions for Infotainment, Connectivity, or Digital Cockpit domains.
• Experience working with Tier 1 automotive suppliers.
• Familiarity with Chinese GB/T automotive cyber security standards.
• Experience with secure manufacturing, provisioning, and production environments.
• Experience supporting security audits, assessments, and regulatory reviews.
• Recognized cyber security certifications, such as: CISSP, CISM, CEH, CCSP, Automotive specific cyber security training or certifications (where applicable).
• Experience mentoring or coaching junior cyber security professionals.
• Global program experience across multiple vehicle platforms.

We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.