Automotive Cybersecurity Key Management System (KMS) Lead Engineer

We are seeking an experienced Key Management System (KMS) Lead Engineer with deep expertise in automotive cybersecurity to lead the development and integration of secure key management solutions across vehicle ECUs/HPCs and backend systems (AUTOSAR (Adaptive, Classic) /NON AUTOSAR Architecture).

Key Responsibilities:

• Design and implement secure key management architectures for in-vehicle and backend systems.
• Manage cryptographic key lifecycles including provisioning, rotation, revocation, and destruction.
• Support to Integrate KMS with automotive ECUs, diagnostic tools, and OEM backend infrastructure. Support in KMS and PKI infrastructure integration.
• Ensure compliance with automotive cybersecurity standards (ISO 21434, AUTOSAR, UNECE WP.29).
• Support secure boot, secure firmware updates, and secure diagnostics using UDS services (e.g., 0x27, 0x29).
• Hands-on Experience in cryptographic Key Encryption & Decryption Process, HSM Key Provision, AUTOSAR Crypto Stack, KeyM.
• Collaborate with cross-functional teams (within CEER and ECU/HPC Suppliers) including software, hardware, IT, After sales, Manufacturing and security architects.
• Conduct threat modeling and risk assessments related to key management and authentication.
• Develop and maintain documentation, policies, and procedures for key handling and access control.
• Resolve Cross functional (IT Infrastructure, after sales and Manufacturing) team queries and provide Solution.
• Support secure over-the-air (OTA) updates and firmware validation using digital signatures and hash verification.
• Ensure secure storage and handling of keys using

  Hardware Security Modules (HSMs)

  and

  Trusted Platform Modules (TPMs)

  .

Required Qualifications:

• Bachelors or master’s degree in computer engineering, Cybersecurity, or a related field.
• 5+ years of experience in key management systems, preferably in the automotive domain.
• Strong understanding of PKI, HSMs, TLS, and secure authentication protocols.
• Experience with UDS diagnostic services and secure ECU communication.
• Familiarity with automotive communication protocols (CAN, LIN, Ethernet).
• Proficiency in embedded systems programming (C/C++) and scripting (Python, Bash).
• Knowledge of ISO 21434, AUTOSAR Crypto Stack, and cybersecurity engineering practices.

Preferred Qualifications:

• Experience with OEM-specific KMS platforms and certificate provisioning tools.
• Certifications such as Automotive SPICE, or ISO 21434 Practitioner.
• Exposure to vehicle architecture and ECU development lifecycle.
• Experience with tools like Vector CANoe, ETAS INCA, or similar.

Notice Period: Immediate to 30 Days