Harman

About the Role

We’re looking for a Senior Security Infrastructure Engineer/ KMS to join our Global Product Cybersecurity. The security team has the charter to define external and internal interfaces for secure provisioning and trusted computing base (TCB) updates of our embedded products and platforms.

As part of our work on foundational security and to enable Trusted Execution Environments, we are building the security infrastructure services necessary to support secure device provisioning and lifecycle management for the SOC-Integrated Root of Trust (RoT), and manage the trusted elements of the platform.

If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Automotive lines of business, then we want to talk to you.

What You Will Do

• Collaborate closely with the Automation and SSDLC team to enable product security to be proactive part of our product development and maintenance process
• Lead the design, development, and deployment of security infrastructure services for key management, manufacturing provisioning, certificate authority, and code signing
• Lead the design and development of APIs, protocols and services for enumeration, configuration and management of platform assets
• Lead the development of policies and procedures associated with key generation / management
• Interface with manufacturing partners to install, troubleshoot and debug security provisioning aspects
• Interface and lead SW teams to build the components required for hosting the services along with any SDKs required for partners
• Day-to-day operations of security infrastructure services

What You Need

• Bachelor or Master Degree in Computer Science or a technical subject area, with 4+ years of industry experience in a developer role with security background
• Proficiency programming in C/C++/Java or equivalent UI capable language and/or programming in Python or equivalent scripting language
• Full stack developer with fault-tolerant systems experience and security background
• Knowledge of hardware security module (HSM) appliance integration and coding for code signing services, secure payload decryption, certificate signing, device ID generation, etc.
• Ability to understand complex vehicle systems, identify their attack surface and prioritize attack vectors
• Experience with integrating remote systems with automatic test equipment (ATE)
• Operational experience in deploying and maintaining an HSM, code-signing, access control management, web services deployment, software upgrades, CI/CD flows
• Understanding of security flows, key generation, secure key delivery, access control tokens, key cards, n of m quorums, and other secure processes
• Understanding of crypto primitives such as keys, signatures, certificates, etc.
• VPN, SSL, secure connection experience (programming and configuration)
• Strong German language level
• Ability to communicate openly and empathetically, and a strong team player
• Bold, innovative and enjoy challenging yourself

What is Nice to Have

• Automotive cybersecurity experience (preferably from Tier-1 or OEM)
• Experienced with Docker, containerization, microservices, ECS, Kubernetes, CloudHSM
• 6+ years’ in the encryption and key management security discipline
• Experience in IoT / Embedded systems security engineering
• Active participation of conferences, consortiums, CTFs (capture the flag) or publications, blogs or repositories of past Cybersecurity work

What We Offer

• HARMAN offers a diverse and inclusive work environment that fosters and encourages career development opportunities, professional training and competitive market base compensation
• You will also receive top-notch employee discounts on Harman’s Consumer Audio (JBL, AKG, HARMAN Kardon) and Samsung products
• Flexible work schedule with a culture encouraging work life integration and collaboration in a global friendly working atmosphere and good work-life-balance
• Attractive salary package based on the Metall & Elektro Tarif Baden Wurttemberg and an Employer contribution towards a company pension plan
• Professional development opportunities through HARMAN University’s business and leadership academies which also includes extensive technical trainings
• Internal talent management leadership acceleration programs
• “Be Brilliant” employee recognition and rewards program