BlackBerry QNX Cybersecurity Manager

at  BlackBerry

Ottawa, ON, Canada -

Start DateExpiry DateSalaryPosted OnExperienceSkillsTelecommuteSponsor Visa
Immediate28 Nov, 2024Not Specified30 Aug, 2024N/AIso,Communication Skills,Product Security,PythonNoNo
Add to Wishlist Apply All Jobs
Required Visa Status:
CitizenGC
US CitizenStudent Visa
H1BCPT
OPTH4 Spouse of H1B
GC Green Card
Employment Type:
Full TimePart Time
PermanentIndependent - 1099
Contract – W2C2H Independent
C2H W2Contract – Corp 2 Corp
Contract to Hire – Corp 2 Corp

Description:

Worker Sub-Type:
Regular
Job Description:
BlackBerry® QNX® is a trusted supplier of safe and secure operating systems, hypervisors, frameworks and development tools, and provides expert support and services for building the world’s most critical embedded systems. We are the embedded experts. BlackBerry QNX was born in embedded, and provides time-tested and trusted foundation software, including our deterministic microkernel real-time operating system (RTOS), safety-certified products, middleware and security solutions, all purpose-built for embedded systems.
BlackBerry QNX software is trusted by more than
68% of the Electric Vehicle market by volume
, 23 of the top 25 EV manufacturers and is running in more than 195 million vehicles globally. Our foundation products have been pre-certified to ISO 26262 ASIL D and we offer a broad range of board support packages, professional services, AUTOSAR adaptive support and middleware solutions – from acoustic management, to digital cockpits to advanced driving assistance (ADAS) - to accelerate development and help OEMs meet Start of Production (SOP) dates. Our customers count on us to convert awesome ideas into great products and services.
Are you the person we are looking for?
The BlackBerry QNX product Security Operations team is growing. We’re looking for talented individuals with an interest in cybersecurity and advanced embedded technology.

Job Duties

  • Provide Cybersecurity guidance and support to development teams in the generation of work products to comply with ISO 21434
  • Undertake research projects or in-depth vulnerability analysis
  • Review project documentation, suggest changes based on cybersecurity requirements and best practices
  • Provide product security support to internal and external stakeholders
  • Drive, contribute and coordinate Threat Analysis and Risk Assessment (TARA) activities in accordance with ISO 21434
  • Work with development teams to assess software defects for impacts to security
  • Perform reviews and verification of ISO 21434 work products
  • Assist and advise development teams on security testing activities
  • Continually identify standards compliance gaps and implement process improvements
  • Automating things - process activities, fuzz testing, scanning and reporting, etc

Preferred Qualifications

  • knowledge of ISO 21434 and/or UNECE WP.29 R155 is preferred
  • Exposure to ASPICE and ISO26262
  • Experience working within a product security and custom engineering teams
  • Experience with product third-party certification and audits
  • Experience working directly with customers
  • Excellent communication skills
  • Must be able to work without supervision
  • C/C++ and Python

LI-SK2

Scheduled Weekly Hours:
4

Responsibilities:

  • Provide Cybersecurity guidance and support to development teams in the generation of work products to comply with ISO 21434
  • Undertake research projects or in-depth vulnerability analysis
  • Review project documentation, suggest changes based on cybersecurity requirements and best practices
  • Provide product security support to internal and external stakeholders
  • Drive, contribute and coordinate Threat Analysis and Risk Assessment (TARA) activities in accordance with ISO 21434
  • Work with development teams to assess software defects for impacts to security
  • Perform reviews and verification of ISO 21434 work products
  • Assist and advise development teams on security testing activities
  • Continually identify standards compliance gaps and implement process improvements
  • Automating things - process activities, fuzz testing, scanning and reporting, et


REQUIREMENT SUMMARY

Min:N/AMax:5.0 year(s)

Information Technology/IT

IT Software - Other

IT

Graduate

Proficient

1

Ottawa, ON, Canada