Senior systems security engineer job description

Provide overall technical direction and guidance to the project lead(s). Responsible for leading the engineering of improved and new solutions. Serve as Subject Matter Expert (SME) on capabilities and attend agency and community wide meetings in support of SME role. Interface and collaborate with technical personnel across the community in the implementation of increased collaboration capabilities. Analyzes user's requirements, concept of operations documents, and high level system architectures to develop system requirements specifications. Guides users in formulating requirements, advises alternative approaches, and conducts feasibility studies.
Responsibilities

* Provide technical direction for the development, engineering, interfacing, integration, and testing of all components of complex hardware/software systems to include requirements elicitation, analysis and functional allocation, conducting systems requirements reviews, developing concepts of operation and interface standards, developing system architectures, and performing technical/nontechnical assessment and management as well as end-to-end flow analysis
* Develop comprehensive SOA solutions
* Develop operational view, technical standards view, and system and services view for architectures using applicable DoDAF standards
* Conduct and/or approve end-to-end system trade analyses to optimize system operations over its life-cycle through the proper balance of non-functional system performance areas
* Improve standard integration strategies based upon rationale for previous decisions that resulted in improved integration performance
* Fully define interfaces in terms of origination, destination, stimulus, and data characteristics for software; and electrical and mechanical characteristics for hardware
* Use validated models, simulations, and prototyping to mitigate risk and reduce cost of system development

Required Experience/Qualifications

* Three (3) years of experience as a SE in programs and contracts of similar scope, type and complexity is required.
* Bachelor's degree in System Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or related discipline from an accredited college or university is required.
* Experience working with the ODNI to ensure successful execution of all program requirements.
* Possess the necessary technical qualifications to deliver all requirements for ACSS to include a Certified Information Systems Security Professional (CISSP).
* Demonstrated experience defining a long-term technology vision, standards, and multi-year technology vision, standards and multi-year technology road map and partnering cross functionality on the delivery of architecturally aligned products, services, and platforms.
* A demonstrated working knowledge of public key infrastructure and encryption systems. Familiarization with NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems", Committee on National Security Systems Instructions (CNSSI) 1253, and NIST SP 800-53 Revisions 3 and 4, SP 800-39, SP 800-30.

Special Requirements/Security Clearance

* Active TS/SCI w/ CI poly
* By Light does not require COVID-19 vaccinations or boosters; vaccination requirements and testing are subject to the status of the federal contractor mandate and customer site requirements; testing is at the cost of the employee.

Leading the future in luxury electric and mobility
At Lucid, we set out to introduce the most captivating, luxury electric vehicles that elevate the human experience and transcend the perceived limitations of space, performance, and intelligence. Vehicles that are intuitive, liberating, and designed for the future of mobility.

We plan to lead in this new era of luxury electric by returning to the fundamentals of great design - where every decision we make is in service of the individual and environment. Because when you are no longer bound by convention, you are free to define your own experience.

Come work alongside some of the most accomplished minds in the industry. Beyond providing competitive salaries, we're providing a community for innovators who want to make an immediate and significant impact. If you are driven to create a better, more sustainable future, then this is the right place for you.

Leading the future of luxury mobility:

Lucid's mission is to inspire the adoption of sustainable energy by creating the most captivating luxury electric vehicles, centered around the human experience. Working at Lucid Motors means having a shared vision to power the future in revolutionary ways. Be part of a once-in-a-lifetime opportunity to transform the automotive industry.

We are currently seeking a Senior Systems Engineer, Security. The ideal candidate exhibits a can-do attitude and approaches his or her work with vigor and determination. Candidates shall demonstrate excellence in their respective fields, possess the ability to learn quickly, and strive for perfection within a fast-paced environment. This role requires a mix of system and solution architecture capabilities and cross-functional collaboration skills.

**This role is located on-site at Headquarters in Newark, CA.**
ROLE AND RESPONSIBILITIES:Drive cross-functional teams to consolidate detailed requirements and architecture specifications for the next generation vehicle and infrastructure security solutions.Define the project/product benefits and success criteria along with the priorities and arrive at executable roadmaps. Author Security-related RFPs, RFQs, SoWs spanning in-vehicle and vehicle-to-infrastructure secure communications, secure ECU software/firmware updates, penetration testing, threat analysis and risk assessment (TARA), fleet data protection & privacy aspects, and evaluate suppliers Ensure complete requirements and architecture traceability and compliance to industry standards.Closely collaborate with the Verification and Development engineers to establish product excellence; the teams span internal and external teams, including suppliers and partners.Ensure optimization of software through design reviews and code reviews.Integrate with different teams, including Vehicle Controls, Chassis, Safety, Battery, Infotainment, and UX, to realize the overall project objectives on time and within budget.Approach challenges/problems laterally across the systems and domains and vertically drill down to subsystems and elements involved and reconcile gaps and contradictions. Follow-through and Follow-up diligently to unblock the issues.Regularly communicate vision, features, priorities, deliverables, and goals to our stakeholders via program documentation, launch announcements, release notes, brown bags, seminars, user training.
REQUIRED QUALIFICATIONS:Bachelor's in Computer Science, Computer Engineering.The ideal candidate shall have at least six years or more of industry experience in technical architects' roles and technical product management in the areas spanning network and information security, data privacy, and cybersecurity for road vehicles.Candidates with prior experience in and knowledge of some of the following areas would be given preference. Threat analysis and risk assessment (TARA) at the vehicle level and electronic control unit(ECU) level Vulnerabilities in-vehicle connectivity interfaces and protocols, e.g. CAN, BLE, Wi-Fi, GNSS, mitigation mechanisms, and security enforcement. The emerging security standards/frameworks including ISO/SAE 21434, UNCE WP.29 cybersecurity, and cybersecurity management systems. regulations regarding connected vehicles Solutions to comply with emerging data privacy and protection laws and regulation applicable to vehicle data, e.g., California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR), SB-327 Information privacy: connected devices, Oregon State House Bill 2395 Road Vehicle Fleet Security Operations Scalable Public Key Infrastructure Deployments and management V2X adoption and security enforcement Experience using requirement management systems like JAMA, JIRA, Confluence, or similar tools.
PREFERRED QUALIFICATIONS:Master's in computer science, Computer Engineering.Experience in Scalable Public Key Infrastructure Deployments and management

At Lucid, we don't just welcome diversity - we celebrate it! Lucid Motors is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, national or ethnic origin, age, religion, disability, sexual orientation, gender, gender identity and expression, marital status, and any other characteristic protected under applicable State or Federal laws and regulations.

Notice regarding COVID-19 protocols
At Lucid, we prioritize the health and wellbeing of our employees, families, and friends above all else. In response to the novel Coronavirus all new Lucid employees, whose job will be based in the United States may or may not be required to provide original documentation confirming status as having received the prescribed inoculation (doses). Vaccination requirements are dependent upon location and position, please refer to the job description for more details.

Individuals in positions requiring vaccinations may seek a medical and/or religious exemption from this requirement and may be granted such an accommodation after submitting a formal request to and the subsequent review and approval thereof by our dedicated Covid-19 Response team.

To all recruitment agencies: Lucid Motors does not accept agency resumes. Please do not forward resumes to our careers alias or other Lucid Motors employees. Lucid Motors is not responsible for any fees related to unsolicited resumes.

Provide overall technical direction and guidance to the project lead(s). Responsible for leading the engineering of improved and new solutions. Serve as Subject Matter Expert (SME) on capabilities and attend agency and community wide meetings in support of SME role. Interface and collaborate with technical personnel across the community in the implementation of increased collaboration capabilities. Analyzes user's requirements, concept of operations documents, and high level system architectures to develop system requirements specifications. Guides users in formulating requirements, advises alternative approaches, and conducts feasibility studies.

+ Provide technical direction for the development, engineering, interfacing, integration, and testing of all components of complex hardware/software systems to include requirements elicitation, analysis and functional allocation, conducting systems requirements reviews, developing concepts of operation and interface standards, developing system architectures, and performing technical/nontechnical assessment and management as well as end-to-end flow analysis
+ Develop comprehensive SOA solutions

+ Develop operational view, technical standards view, and system and services view for architectures using applicable DoDAF standards

+ Conduct and/or approve end-to-end system trade analyses to optimize system operations over its life-cycle through the proper balance of non-functional system performance areas

+ Improve standard integration strategies based upon rationale for previous decisions that resulted in improved integration performance

+ Fully define interfaces in terms of origination, destination, stimulus, and data characteristics for software; and electrical and mechanical characteristics for hardware

+ Use validated models, simulations, and prototyping to mitigate risk and reduce cost of system development

+ Three (3) years of experience as a SE in programs and contracts of similar scope, type and complexity is required.

+ Bachelor's degree in System Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or related discipline from an accredited college or university is required.

+ Experience working with the ODNI to ensure successful execution of all program requirements.

+ Possess the necessary technical qualifications to deliver all requirements for ACSS to include a Certified Information Systems Security Professional (CISSP).

+ Demonstrated experience defining a long-term technology vision, standards, and multi-year technology vision, standards and multi-year technology road map and partnering cross functionality on the delivery of architecturally aligned products, services, and platforms.

+ A demonstrated working knowledge of public key infrastructure and encryption systems. Familiarization with NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems", Committee on National Security Systems Instructions (CNSSI) 1253, and NIST SP 800-53 Revisions 3 and 4, SP 800-39, SP 800-30.

+ Active TS/SCI w/ CI poly

+ By Light does not require COVID-19 vaccinations or boosters; vaccination requirements and testing are subject to the status of the federal contractor mandate and customer site requirements; testing is at the cost of the employee.


Minimum Clearance: TS/SCI w/ Polygraph

External Company Name: By Light Professional IT Services LLC

External Company URL: www.bylight.com

Street: 20 MacDill Blvd SE