..
   # *******************************************************************************
   # Copyright (c) 2025 Contributors to the Eclipse Foundation
   #
   # See the NOTICE file(s) distributed with this work for additional
   # information regarding copyright ownership.
   #
   # This program and the accompanying materials are made available under the
   # terms of the Apache License Version 2.0 which is available at
   # https://www.apache.org/licenses/LICENSE-2.0
   #
   # SPDX-License-Identifier: Apache-2.0
   # *******************************************************************************

   # Some portions generated by Co-Pilot

Roles
#####

.. role:: Security Engineer
   :id: rl__security_engineer
   :status: valid
   :contains: rl__committer

   The Security Engineer is responsible for the Security Analysis in the project.
   There might be several analyses on different levels (Platform, Feature and Component).

   Required skills

   * Degree: Master's degree in electrical engineering/computer science/mathematics, or similar degree, or comparable work experience
   * Deep understanding of cybersecurity engineering including security analysis
   * Knowledge of Security Management to ensure collaboration with the Security Manager
   * Technical know-how of embedded systems
   * Preferred training: Automotive Cybersecurity Expert or similar

   Knowledge of standards

   * ISO/SAE 21434
   * ISO 26262

   Experience

   * More than five years of experience in security engineering
   * Experience with security analysis methods
   * Experience in automotive software development projects
   * Experience in creation of work products according to ISO/SAE 21434

   Responsibility

   * Analyze Feature and Component Architecture by performing Security Analysis
   * Monitor Security Analysis
   * Verify Security Analysis
   * Create the Security Manual

   Authority

   * Escalation of security topics to the Security Manager
   * Creation of Issues in the Issue Tracking System for needed mitigations (accept, avoid, reduce, share)

Contributing Roles:

   * :need:`Contributor <rl__contributor>`
   * :need:`Committer <rl__committer>`
   * :need:`Security Manager <rl__security_manager>`
   * :need:`Safety Manager <rl__safety_manager>`

A detailed overview of the responsibility for the steps of the Security Analysis process
is listed in the section titled "Workflow Security Analysis". You can find it here:

:ref:`workflow_security_analysis`