- Collaborate closely with the Automation and SSDLC team to enable product security to be proactive part of our product development and maintenance process
- Lead the design, development, and deployment of security infrastructure services for key management, manufacturing provisioning, certificate authority, and code signing
- Lead the design and development of APIs, protocols and services for enumeration, configuration and management of platform assets
- Lead the development of policies and procedures associated with key generation / management
- Interface with manufacturing partners to install, troubleshoot and debug security provisioning aspects
- Interface and lead SW teams to build the components required for hosting the services along with any SDKs required for partners
- Day-to-day operations of security infrastructure services
- Bachelor or Master Degree in Computer Science or a technical subject area, with 4+ years of industry experience in a developer role with security background
- Proficiency programming in C/C++/Java or equivalent UI capable language and/or programming in Python or equivalent scripting language
- Full stack developer with fault-tolerant systems experience and security background
- Knowledge of hardware security module (HSM) appliance integration and coding for code signing services, secure payload decryption, certificate signing, device ID generation, etc.
- Ability to understand complex vehicle systems, identify their attack surface and prioritize attack vectors
- Experience with integrating remote systems with automatic test equipment (ATE)
- Operational experience in deploying and maintaining an HSM, code-signing, access control management, web services deployment, software upgrades, CI/CD flows
- Understanding of security flows, key generation, secure key delivery, access control tokens, key cards, n of m quorums, and other secure processes
- Understanding of crypto primitives such as keys, signatures, certificates, etc.
- VPN, SSL, secure connection experience (programming and configuration)
- Strong German language level
- Ability to communicate openly and empathetically, and a strong team player
- Bold, innovative and enjoy challenging yourself
- Automotive cybersecurity experience (preferably from Tier-1 or OEM)
- Experienced with Docker, containerization, microservices, ECS, Kubernetes, CloudHSM
- 6+ years' in the encryption and key management security discipline
- Experience in IoT / Embedded systems security engineering
- Active participation of conferences, consortiums, CTFs (capture the flag) or publications, blogs or repositories of past Cybersecurity work
- HARMAN offers a diverse and inclusive work environment that fosters and encourages career development opportunities, professional training and competitive market base compensation
- You will also receive top-notch employee discounts on Harman's Consumer Audio (JBL, AKG, HARMAN Kardon) and Samsung products
- Flexible work schedule with a culture encouraging work life integration and collaboration in a global friendly working atmosphere and good work-life-balance
- Attractive salary package based on the Metall & Elektro Tarif Baden Wurttemberg and an Employer contribution towards a company pension plan
- Professional development opportunities through HARMAN University's business and leadership academies which also includes extensive technical trainings
- Internal talent management leadership acceleration programs
- "Be Brilliant" employee recognition and rewards program
Senior Security Infrastructure Engineer/ KMS - Ulm, Deutschland - HARMAN International
Beschreibung
HARMAN's engineers and designers are creative, purposeful and agile. As part of this team, you'll combine your technical expertise with innovative ideas to help drive cutting-edge solutions in the car, enterprise and connected ecosystem. Every day, you will push the boundaries of creative design, and HARMAN is committed to providing you with the opportunities, innovative technologies and resources to build a successful career.
A Career at HARMAN
As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you'll discover that at HARMAN you can grow, make a difference and be proud of the work you do everyday.
About the Role
We're looking for a Senior Security Infrastructure Engineer/ KMS to join our Global Product Cybersecurity. The security team has the charter to define external and internal interfaces for secure provisioning and trusted computing base TCB) updates of our embedded products and platforms.
As part of our work on foundational security and to enable Trusted Execution Environments, we are building the security infrastructure services necessary to support secure device provisioning and lifecycle management for the SOC-Integrated Root of Trust (RoT), and manage the trusted elements of the platform.
If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Automotive lines of business, then we want to talk to you.
What You Will Do
What You Need
What is Nice to Have
What We Offer
HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard torace, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.