Product Cybersecurity Validation and Verification Engineer

Build your brand. Tell your story. Take advantage of a rare opportunity to start from the ground up and build something great. We are looking for technology game changers to lead Stellantis into a fundamental transformation within the automotive industry. Technology is going to disrupt the automotive industry significantly in the next decade, and our organization is seeking high potential candidates to transform the company with a focus on customer experience.

Stellantis’s Software Organization (SWX) was created to build the most captivating experiences in the latest frontier of Automotive Technology.

The Product Cybersecurity Engineer (V&V) is responsible for executing and supporting cybersecurity verification, validation, and penetration testing activities across vehicle architectures, components, and systems within Product Development. Operating within the Product Cybersecurity and Functional Safety (CSFS) organization, this role ensures that implemented cybersecurity controls are tested, validated, and compliant with defined requirements, industry regulations, and internal cybersecurity standards prior to product release.

• Develop and execute cybersecurity verification, validation, and penetration testing activities for vehicle systems, ECUs, and applications
• Create and maintain cybersecurity test plans, procedures, and test scripts based on defined requirements and security concepts
• Analyze test results to confirm implementation of cybersecurity controls and identify gaps or non-compliances
• Perform threat and risk analysis on identified defects, including impact and feasibility assessment
• Identify, document, and track cybersecurity vulnerabilities and issues through resolution
• Collaborate with engineering, suppliers, and cross-functional teams to support issue remediation and validation closure
• Support development of validation artifacts and reports (e.g., verification reports) to demonstrate compliance prior to release

• Bachelor's degree in electrical engineering, Computer Science, Cybersecurity, or related degree field.
• A minimum of 8 years of experience
• Knowledge within resume of NIST frameworks, Risk Management, understanding and application of Threat Analysis and Risk Assessments, and incident response.
• Knowledge within resume of automotive cybersecurity (minimum 3 years) and an understanding of applicable requirements and regulations (i.e. ISO/SAE 21434 and UNECE R155 etc.).
• Knowledge and understanding of vulnerability management and incident response.
• Knowledge of automotive operating systems (Autosar Classic and Adaptive, QNX, Linux, Android, etc.) and middleware
• An understanding of EE platforms or components for Service Oriented Architectures (SOA).
• Knowledge of automotive and cybersecurity testing tools
• Ability to work collaboratively in multicultural teams.
• Skills in technical writing and presenting.
• Good self-organization and analytical skills.
• Good proficiency in English.

• Master of Science Degree in Engineering or Computer Science
• Demonstrated experience of delivering business and technology results for complex, cross-functional initiatives while managing multiple competing priorities.
• Experience in defining and designing large complex embedded networked computer systems including definition of system topologies, components, and interfaces.
• Knowledge of automotive operating systems (Autosar Classic and Adaptive, QNX, Linux, Android, etc.) and middleware
• Knowledge of automotive and cybersecurity testing tools
• Ability to work collaboratively in multicultural teams.
• Strong skills in technical writing and presenting.
• Good self-organization and analytical skills.