Purpose of the Role
We are seeking an experienced Senior Product Security Specialist to drive end-to-end cybersecurity for our Battery Management System (BMS) and Battery Pack platforms.
This role requires deep expertise across embedded systems security, application development and security, security tooling, and automotive/industrial cybersecurity standards, with the ability to take independent architectural and risk-based decisions across hardware, firmware, backend platforms, and manufacturing environments.
The candidate will own the product security strategy from concept to production, web ecosystem integration, and field deployment, ensuring secure-by-design implementation and near-zero security defect leakage into production.
Key Responsibility Areas
- Define and own the product cybersecurity architecture for BMS and Battery Pack systems
Establish security design principles and ensure alignment with business and regulatory requirements - Drive Secure Development Lifecycle SDL adoption across firmware hardware and software teams
Define secure coding practices and integrate security checkpoints across all development phases
Conduct security awareness and training for engineering teams - Lead threat modelling and risk assessment activities TARA
Identify attack surfaces vulnerabilities and define mitigation strategies
Ensure closure of all identified risks with zero critical defects before release - Implement and ensure compliance with cybersecurity standards ISO SAE 21434 UN R155 R156 IEC 62443
Maintain compliance documentation and support audits and certifications - Design and validate security features such as secure boot firmware signing and cryptographic key management
Implement Hardware Root of Trust HRoT and HSM based security mechanisms - Secure communication interfaces including CAN CAN FD diagnostics and OTA updates
Ensure encryption authentication and integrity of all communication layers - Lead firmware and software penetration testing activities
Perform vulnerability assessments fuzz testing and validate remediation - Define secure manufacturing processes including firmware flashing key injection and provisioning workflows
Ensure manufacturing environment security and controlled access - Provide cybersecurity approval and sign off for product releases
Define security acceptance criteria and ensure all risks are mitigated - Define and secure web based platforms such as OTA portals battery analytics dashboards and provisioning tools
Implement strong authentication authorization and data protection mechanisms - Ensure supply chain security by validating third party vendors and components
Verify firmware integrity and enforce secure update mechanisms - Ensure no critical or high risk security vulnerabilities are released into production
Track and manage vulnerabilities until closure - Drive continuous improvement in cybersecurity practices and adopt new tools and technologies
Stay updated with emerging threats and industry best practices
Required Qualifications
- 10–12 years of experience in embedded systems security, automotive cybersecurity, or industrial product security
- Hands-on experience securing BMS, EV platforms, or industrial control products
- Strong knowledge of:
- Embedded C/C++ security
- CAN protocol security
- Cryptography (AES, ECC, SHA-256, TLS where applicable)
- Secure boot and hardware security modules
- Web application security principles
- Experience implementing ISO/SAE 21434 or equivalent frameworks
- Proven ability to take technical risk decisions independently
- Experience with security tool selection, deployment, and DevSecOps integration
Preferred Qualifications
- Experience with EV Battery Packs or Energy Storage Systems
- Familiarity with AUTOSAR security stack
- Experience with OTA security and key lifecycle management
- Security certifications (CISSP, ISO 21434 Practitioner, etc.)
- Experience integrating security tools into CI/CD pipelines
