Luxoft is a global IT service provider of innovative technology solutions that delivers measurable business outcomes to multinational companies. Its offerings encompass strategic consulting, custom software development services, and digital solution engineering. Luxoft enables companies to compete by leveraging its multi-industry expertise in the financial services, automotive, communications, and healthcare & life sciences sectors. For more information, please visit the website.
Maintain and orchestrate security improvements, state-of-the-art security concepts and architectures
Identify threats by utilising threat modelling techniques
Lead Risk Management processes and focus on reducing risks by implementing security controls and countermeasures
Drive process of defining security requirements towards ECUs and systems
Coordinate security testing and security assessments towards system and functions.
Defining problem statements and developing solution proposals for security issues
Coordinate security initiatives in multiple domains - secure platform design, authentication and authorisation, compliance, software security testing and security assurance
Develop and maintain security architecture for large embedded connected system
Coordinate security and safety across application teams, functional teams and system managers to ensure robust and secure posture from design to implementation
Stay on top of current threat landscape by tracking Threat Intelligence Reports, Newly discovered vulnerabilities and novel countermeasures
MustExperience with creating and managing Security Architecture and/or Solution Architecture
Risk management experience, including threat identification, risk assessment and mitigation as well as vulnerability management and tracking
Strong software security expertise, including familiarity with Secure Software Development Lifecycle, SAST, Threat Modelling, and Penetration testing concepts
Familiarity with safety requirements set towards automotive software solutions (ISO 26262:2018)
Experience and ability to perform Threat modelling for automotive software projects
Understanding of automotive security standards and guidelines (like SAE J3061 and other)
Nice to haveSecurity certification is a plus (CISSP, CRISC, CISA, CISSP-ISSAP)
Experience in managing end-to-end security in software project
Technical IT-related degree or equivalent qualification
Familiar with agile test-driven development and continuous integration
Proficient in English. German is a plus.
- English: Advanced/Fluent