Qualifications

â?¢

Must be a team player, highly motivated, must demonstrate a high degree of confidentiality, discretion, integrity, and professionalism in all aspects of the job

â?¢

Ability to set and manage priorities judiciously

â?¢

Excellent written and oral communication skills

â?¢

Strong negotiating skills

â?¢

Excellent interpersonal skills

â?¢

Ability to present ideas in business-friendly and user-friendly language

â?¢

Exceptionally self-motivated and directed

â?¢

Superior analytical, evaluative, and problem-solving abilities

â?¢

Ability to motivate in a team-oriented, collaborative environment

â?¢

University degree in the field of Cyber Security, Risk Management or comparable work experience

â?¢

5 yearsâ?? experience managing and/or directing a security governing function

â?¢

5 yearsâ?? experience working in the automotive industry

â?¢

Proven experience in planning and executing security risk management

â?¢

Planning, organizing, and developing automotive Cyber Security (ISO 21434)

â?¢

Excellent knowledge of information security industry standards (ISO/IEC 27001) NIST Cyber Security Framework

â?¢

Considerable knowledge of IT cyber security tools and standards

â?¢

Considerable knowledge of business theory, business processes, management, budgeting, and business office operations

â?¢

Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems

â?¢

Experience with systems design and development from business requirements analysis through to day-to-day management

â?¢

Excellent understanding of project management principles

â?¢

Demonstrated ability to apply Risk Management in solving security challenges

â?¢

In-depth knowledge of applicable laws and regulations as they relate to security

â?¢

Understanding of ANSI, SAE, QS-9000 and other industry/customer related standards

Responsibilities

â?¢

The Cyber Security Risk Management role is to provide vision and leadership for developing and supporting Cyber Security Risk Management initiatives to protect Corporate information assets, as they are stored, processed or transported by means of an Information System

â?¢

They will work closely with the Director Information Security and the Manager Cyber Security Architecture to align with corporate requirements

â?¢

This individual is also responsible for directing the development and administration of the Cyber Security Risk Management policy, and related activities, and standards

â?¢

Define cybersecurity risk management on vehicle level with damage scenarios, relevant stakeholders, impact categories and related products

â?¢

Develop, specify and check security requirements

â?¢

Identify potential risks

â?¢

Analyze potential risks and evaluate risks

â?¢

Derive cybersecurity goals and requirements from the outcomes of risk evaluation and assessment

â?¢

Ensure consistency between the risk assessment, cybersecurity goals and cybersecurity requirements

â?¢

Communicate agreed cybersecurity goals and cybersecurity requirements to all affected parties

â?¢

Define risk treatment option

â?¢

Refine the details of the architectural design based on cybersecurity goals and cybersecurity requirements

â?¢

Allocate the cybersecurity requirements to one or more elements of the architectural design

â?¢

Monitor risks and develop a risk treatment verification and integration strategy

â?¢

When relevant changes to risks are identified, initiate and follow up appropriate corrective action

â?¢

Set up Cybersecurity Management System as required per ISO/SAE 21434

â?¢

Ensure the effective implementation of cybersecurity across the vehicle life-cycle with managers and developers

â?¢

Coordinate relevant documents/work products to fulfill the ISO standard

â?¢

Plan and track all Cybersecurity activities according to the defined project processes

â?¢

Stay connected and up to date on newest cybersecurity threats and vulnerabilities

â?¢

Define cyber security requirements for production and maintenance phase of vehicle

â?¢

Required Responsible for working in compliance with the provisions of the Health and Safety Act as well as any rules or standards