Key Responsibilities
Monitor, triage, and respond to cybersecurity incidents originating from
:
Dealers and suppliers
Public vulnerability disclosures & AutoISAC
Internal systems and telematics inputs
Follow
PSIRT (Product security incident response team) framework and procedures
:
Information collection, classification/Triage, , investigation/Event analysis, Countermeasure, Response action plan and closure
Coordinate with cross-functional stakeholders:
Product Engineering, IT, Legal, Vendors, and Global Teams
Ensure adherence to
defined response timelines (SLA/KPIs)
and regulatory requirements (AIS-189/190 / ISO 21434, ISO26262, UNR155/156)
Perform or assist in
root cause analysis
and recommend corrective/preventive actions along with engineering
Maintain incident documentation, audit trails, and evidence for compliance reviews
Support
threat intelligence tracking
and vulnerability monitoring relevant to automotive systems
Prepare
management dashboards, reports, and escalation notes
Additional responsibility - Contribute to
Global Quality monitoring activities
, continuous improvement programs & Data analytics activities.
Manage yearly
revenue & capital budgeting planning, monitoring and tracking activities.
Liaison and represent Quality Assurance team during ARAI management system audit and Vehicle Type approval audits
Support audits (internal/external) with evidence and scenario-based responses
Technical / Functional Requirements
Strong understanding of:
Automotive cybersecurity standards (
ISO/SAE 21434, ISO26262, UNECE WP.29, AIS-189/190, UNR155/156
)
Incident response processes and vulnerability management activity
Knowledge of:
Vehicle E/E architecture, CAN, ECU communication, and telematics systems
Cyber threat landscape (malware, exploits, vulnerability disclosures such as CVE)
Incident response framework and best practices followed globally
Experience in:
Incident response, SOC/CSIRT operations, or vulnerability handling
Risk assessment and impact analysis for automotive systems
Familiarity with tools:
Vulnerability databases (NVD, CVE, MITRE ATT&CK)
Issue tracking tools (JIRA, Sharepoint)
SIEM tools (e.g., Splunk, QRadar) is an added advantage
Data analytics tools and python programming.
Ability to interpret
logs, diagnostics data, and failure reports
Exposure to
supplier cybersecurity management
and coordination
Knowledge of Budgeting process and organizational commitments to budgeting
Educational Qualifications
Bachelor’s/Master’s degree in:
Electronics / Electrical Engineering
Computer Science / IT
Mechanical / Automotive Engineering
Cybersecurity or related fields
Relevant certifications (preferred):
CEH / CompTIA Security+
ISO 21434 / Automotive Cybersecurity certifications
CISSP / CISM (desirable)
Japanese Language proficiency N3~N4 level (Optional)
