Roles

Security Engineer		status: valid
tags: security_analysis contains: rl__committer contained by: rl__security_team is responsible for: wf__cr_mt_security_package, wf__cr_mt_security_manual, wf__analyse_sec_platform_featarch, wf__analyse_sec_featarch, wf__analyse_sec_comparch, wf__mr_sec_analyses, wf__vy_sec_analyses approves: wf__cr_mt_security_sbom supports: wf__p_fs_audit_security, wf__p_formal_security_rv, wf__consult_exe_sec_training
The Security Engineer is responsible for the Security Analysis in the project. There might be several analyses on different levels (Platform, Feature and Component). Required skills Degree: Master’s degree in electrical engineering/computer science/mathematics, or similar degree, or comparable work experience Deep understanding of cybersecurity engineering including security analysis Knowledge of Security Management to ensure collaboration with the Security Manager Technical know-how of embedded systems Preferred training: Automotive Cybersecurity Expert or similar Knowledge of standards ISO/SAE 21434 ISO 26262 Experience More than five years of experience in security engineering Experience with security analysis methods Experience in automotive software development projects Experience in creation of work products according to ISO/SAE 21434 Responsibility Analyze Feature and Component Architecture by performing Security Analysis Monitor Security Analysis Verify Security Analysis Create the Security Manual Authority Escalation of security topics to the Security Manager Creation of Issues in the Issue Tracking System for needed mitigations (accept, avoid, reduce, share)
rl__security_engineer		Role

Contributing Roles:

• Contributor (rl__contributor)

• Committer (rl__committer)

• Security Manager (rl__security_manager)

• Safety Manager (rl__safety_manager)

A detailed overview of the responsibility for the steps of the Security Analysis process is listed in the section titled “Workflow Security Analysis”. You can find it here:

Security Analysis Workflows