Consultor/a Ciberseguridad, Normativa Automoción

This is a fully remote position, open to applicants in Spain.

📋 Description

• Define and lead the cybersecurity requirements for connected systems and vehicles throughout their entire lifecycle.

• Implement and maintain cybersecurity activities and deliverables in accordance with ISO/SAE 21434 (from concept to operation and maintenance).

• Conduct and lead TARA analyses, identifying threats, evaluating risks, and ensuring proper traceability of mitigations.

• Ensure compliance with UNECE R155 (CSMS) for projects and programs, preparing evidence and participating in audits.

• Coordinate the integration of cybersecurity and functional safety (ISO 26262), aligning requirements and impact analyses.

• Define, manage, and trace security requirements up to verification and validation activities.

• Manage risks, deviations, and remediation plans alongside various stakeholders.

• Plan and coordinate cybersecurity validation activities: threat modeling, vulnerability analysis, hardening, and penetration testing.

• Develop and maintain key documentation: Cybersecurity Plan, Concept, Case, risk reports, and traceability matrices.

• Participate in the management of vulnerabilities, incidents, and coordination with suppliers and the supply chain.

⛳️ Requirements

• Solid experience in automotive cybersecurity or in connected embedded systems.

• Practical knowledge applying: ISO/SAE 21434, UNECE R155 (CSMS), ISO 26262, and the safety-security interaction.

• Experience in risk analysis and treatment (TARA) and deliverable generation.

• Ability to manage projects, milestones, risks, and reporting.

• Strong communication skills with both technical and non-technical profiles.

• Experience in automotive quality environments, ASPICE, and audits.

• Previous experience with automotive Tier 1 manufacturers or suppliers is a plus.

• Participation in regulatory audits or cybersecurity certifications.

• Knowledge of vulnerability management processes (CVE, CVSS, disclosure).

🏝️ Benefits

• 100% remote work (depending on client/project needs).

• Versatile Growth: Learn new languages and technical certifications through our Expleo Academy.

• Time for You: Enjoy 24 days of vacation per year, plus the days of December 24 and 31.

• Unmatched Environment: A place where support among colleagues is the norm and competitiveness is absent.

• Connection and Well-being: At Expleo, laughter is always present, and fun is guaranteed. Join our paddle and running clubs, summer events, Halloween… and much more!

• Flexible Benefits: Medical insurance, meal vouchers, and childcare… you choose how to use them!