Vacant job

At Tata Technologies, we make product development dreams a reality by designing, engineering, and validating the products of tomorrow for the world’s leading manufacturers. Due to our continued growth, we are now recruiting for a Cybersecurity Engineer to strengthen our team in Gothenburg, Sweden.

The Role

We are seeking an experienced and passionate Automotive Cybersecurity Engineer to take ownership of the cybersecurity lifecycle across our next-generation vehicle platforms. In this role, you will manage the complete Cybersecurity V-Cycle from concept and requirements engineering to verification, validation, and release. You will play a pivotal role in ensuring our development processes conform to Automotive SPICE (ASPICE) frameworks and comply with international regulations such as UN R155/R156 and ISO/SAE 21434.

Key Responsibilities

Cybersecurity V-Cycle Management

• Left Side of the V (Concept & Design):
• Perform Threat Analysis and Risk Assessment (TARA) at the vehicle, system, and component levels.
• Define Cybersecurity Goals, Cybersecurity Concepts, and derive technical cybersecurity requirements (System/Software level).
• Collaborate with system architects and software engineers to design secure E/E architectures, secure onboard communication (SecOC), cryptography, and secure boot concepts.
• Right Side of the V (Verification & Validation):
• Develop cybersecurity test specifications, test cases, and strategies (including vulnerability scanning, penetration testing, and fuzz testing).
• Oversee and execute cybersecurity verification and validation (V&V) activities on HiL (Hardware-in-the-Loop) rigs, test benches, and prototype vehicles.
• Manage vulnerability tracking, triage, and resolution throughout the development lifecycle.

ASPICE & Process Compliance

• Ensure full traceability of cybersecurity requirements from customer/regulatory levels down to software implementation and test cases.
• Prepare engineering teams and documentation for ASPICE audits and assessments.
• Support the organization in maintaining compliance with ISO/SAE 21434 and obtaining/maintaining the Cybersecurity Management System (CSMS) certification under UN R155.
• Supplier & Stakeholder Management
• Define cybersecurity requirements for external Tier-1 suppliers (Cybersecurity Interface Agreement / CIA).
• Review and audit supplier-delivered cybersecurity work products (TARAs, vulnerability reports, and software components).
• Work closely with cross-functional teams, including Functional Safety (ISO 26262), Software Engineering, OTA (Over-the-Air) Updates, and IT/Cloud Security.

Required Qualifications & Experience:

• Bachelor’s or Master’s degree in Computer Science, Electrical Engineering, Cybersecurity, Automotive Engineering, or a related field.
• 3+ years of professional experience in automotive cybersecurity engineering.
• Strong hands-on experience with the V-model development process in an automotive environment.
• Deep understanding of ISO/SAE 21434, UN R155/R156, and Automotive SPICE (ASPICE).
• TARA Expertise: Proven experience in conducting Threat Analysis and Risk Assessments (TARA) using tools like Medini Analyze, Ansys, or similar.

Technical Skills:

• Familiarity with automotive communication protocols (CAN/CAN-FD, LIN, Automotive Ethernet, FlexRay).
• Knowledge of automotive security mechanisms (SecOC, TLS, IPSec, HSM/SHE, Secure Boot, Cryptographic algorithms).
• Experience with diagnostics protocols (UDS ISO 14229) and security access.
• Languages: Fluent in English (written and spoken). Swedish language skills are a plus but not mandatory.

Preferred Qualifications (Nice to Have):

• Certified Automotive Cybersecurity Professional (CACSP) or similar certifications.
• Experience with ASPICE provisional/competent assessor training.
• Familiar with AUTOSAR (Classic/Adaptive) security modules.
• Experience with automotive penetration testing or ethical hacking.

If you are passionate about bringing innovation to the projects you work on and want to join a global company, then this is the place for you.

Tata Technologies: Engineering a better world.

Tata Technologies would like to thank all applicants for their interest; each application will be reviewed against the set criteria for the role. We would like to advise that only candidates under consideration will be contacted. If you do not hear from us within 10 working days following the closing date, it will mean that unfortunately your application has not been successful. We will however retain your details for any suitable future opportunities.