Incident Response Engineer

Job Description

Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the futureIf you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. Who are you Are you the kind of person who is passionate about cybersecurity both process and product implementationWould you like to use your passion in the automotive industry and be part of the cybersecurity vehicle type approvalWould you like to work in a great team with competent and helpful colleagues As a person, you have a holistic view, out of the box mindset, broad technical know-how combined with very good people skills and a strong belief in agile methods. You have a strong ability to inspire, develop and motivate individuals and teams. You are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis. We value broad and deep technical knowledge, specifically in the fields of forensics, malware analysis, network security, application security, threat hunting, and threat intelligence. Team Overview Our team, Product Cybersecurity Management System (PCSMS) is in the heart of a great transformation. We work with developing and improving our product cybersecurity management system (PCSMS) in a continues manner along with coordinating the Cybersecurity work according to R155 and ISO/SAE 21434 along all teams within Volvo Group Truck Technology (GTT), we also supporting teams to do high level attack vector analysis and vehicle TARA analysis to facilitate releasing work products according to state of the arts. As part of our continuous improvement effort, we are looking for qualified Cybersecurity Incident Response Engineer to join our innovative, high-energy team. In this role you will work in the Incident Response Team to respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide security services to safeguard highly sensitive data as well as work hands-on with detection systems and vulnerability analysis tools to respond to potential threats to our products. Responsibilities Continuously monitor threats and risks to the vehicle product especially post SOP until End-of-Life Secure early detection of cybersecurity issues through analysis of vehicle security data and CTI through proactive manner Perform open-source investigation (OSINT) Perform cyber threat intelligence and monitoring. SOC and VSOC monitoring Perform controlled simulated attacks on systems to evaluate their security defences and identify areas for improvement. Identify and manage vulnerabilities and provides lessons learned to further development projects Defines thresholds on which a cybersecurity event will be triggered Perform and coordinates investigation of the technical impact, the scale of the technical impact, and other technical analyses Identifies, analyse, and remediates cybersecurity events and incidents Conducts initial technical analysis resulting in a confirmation or rejection of the event as a PCS incident Conducts classification of a confirmed PCS incident to indicate its impact, urgency, and prioritisation. Triggers and follows-up short-term solution development and implementation from the technical side Supports long-term solution decisions and actions from a technical perspective Coordinates communication with internal technical stakeholders Supports the update of the PCS Incident Response Report Drives the post-incident review activities Manages the cybersecurity risk methodology used in the TARA Manages the cybersecurity aspects of tools that can impact the cybersecurity risks on the vehicle Required Qualification MSc. in Computer Science, Cybersecurity, System engineering Extensive experience (5+ years) and best practice understanding in the field of automotive cyber security, including risk management, incident response, and security vulnerability management, CTI, VSOC VV and Hacking knowledge is a plus Experiences in TARA analysis Knowledge of ISO 21434 and R155 is a plus Knowledge of automotive and embedded system engineering Technical depth in conducting penetration testing, vulnerability assessments, and security audits to identify and address potential vulnerabilities, digital forensic, malware analysis, threat hunting, etc Understanding of attacker exploit techniques and their remediation Experiences in tool set up Proficiency in data analysis Ability to work with high degree of autonomy We value your data privacy and therefore do not accept applications via mail. Who we are and what we believe in . Applying to this job offers you the opportunity to join Volvo Group . Every day, across the globe, our trucks, buses, engines, construction equipment, financial services, and solutions make modern life possible. We are almost 100,000 people empowered to shape the future landscape of efficient, safe and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents with sharp minds and passion across the group s leading brands and entities. At Group People Culture , a part of Volvo Group, we create the foundation and frameworks for people growth and organizational development, to drive the people agenda that enables the realization of the Volvo Group aspirations through people strategy and commitment. You will be part of a global and diverse team of highly skilled professionals who work with passion, trust each other and embrace change to stay ahead.