• Berlin, Germany
• Software Engineering
  About Rivian and VW Technology
  Rivian and Volkswagen Group Technologies is a joint venture between two industry leaders with a clear vision for automotive’s next chapter. From operating systems to zonal controllers to cloud and connectivity solutions, we’re addressing the challenges of electric vehicles through technology that will set the standards for software-defined vehicles around the world.
  The road to the future is uncharted. By combining our expertise across connectivity, AI, security and more, we’ll map a new way forward. Working together, we’ll create a future that’s more connected, more intelligent, more sustainable for everyone.
  Role Summary
  As the Manager of Product Security Validation, you will work closely with Product Security, vehicle software development teams, and cloud engineering teams to build a team to validate that security requirements were met throughout the vehicle development lifecycle. You will play a critical role in ensuring the security and resilience of RVT’s Products, providing leadership in securing vehicles and related infrastructure. This role will be located at one of our RV Tech locations and report directly to the Red Team Lead, Vehicles.

Responsibilities

• Lead and grow security validation engineers in the Product Security Validation

team.

• Be a hands-on technical lead with an understanding of automotive validation testing,

security and carry out the following responsibilities of the Product Security

Validation team:

• Generating and carrying out validation of security requirements: You will develop

security tests, both positive tests and abuse tests, to ensure that security requirements

have been met at the Vehicle, system, sub-system, and ECU level.

• Develop both manual and automated test cases: You will develop both functional and

non-functional security tests to ensure that security requirements are met. Test cases
could be developed in multiple languages, including but not limited to JavaScript, Python, Go, Java, C, and C++ for multiple architectures. And being able to build test cases that can
be run on software in the loop (SIL) setups or hardware in the loop (HIL) benches.
Having access to the source for internally developed code, but also dealing with validating
supplier parts to meet our requirements without access to the source code. So some reverse

engineering work might be required.

• Documenting validation testing: You will develop testing reports and compile results

, and share with the Product Security GRC team as well as our core JV partners for
evidence to enable their documentation of compliance to EU R155/156. You will work with
the GRC team on aligning to document formats and following ISO 214343 processes for

generating and sharing this documentation across the organization.

• Collaborating with Software Development teams: You will be sharing results with

development teams and reviewing issues and suggesting mitigations to failed tests. As
well as validating subsequent fixes. As well as collaborating with other teams within
Product Security, especially the Security Engineering team that builds the Security HILs.

Qualifications

• B.S. in Information Security, Computer Science, Computer Engineering, or a related

field.

• 2+ years managing teams that carry out security requirements validation in embedded

device development

• 5+ years of experience in Automotive Industry or Embedded device development
• 5+ years of experience carrying out security requirements validation on ECUs (electronic

control units)

• Knowledge of ISO 21434 / 24089 and EU R155/156 and applying it with regards to

security validation

• Ability to work in a fast-paced development environment.
• Good team player with excellent communication skills.
• Hands-on approach, proactively identifying and filling in gaps where needed.
• Track-record of managing teams and helping people grow and develop.

Company Statements - JV

• Lead and grow security validation engineers in the Product Security Validatio