Cyber Security Consultant (German Required)

Cyber Security Consultant with strong expertise in automotive cybersecurity, regulatory compliance, and secure system design for connected and software‑defined vehicles. Experienced in supporting OEMs, Tier‑1 suppliers, and mobility technology companies in meeting global cybersecurity regulations and implementing end‑to‑end security processes.

Fluent in English and advanced in German (German is a must in this role), enabling effective communication with stakeholders, engineering teams, and regulatory authorities in German‑speaking markets.

📍 based in Romania

Core Technical Skills:

• ISO/SAE 21434


• UNECE R155 – Cybersecurity Regulation


• UNECE R156 – Software Update Regulation


• CSMS (Cyber Security Management System)


• TARA (Threat Analysis & Risk Assessment)


• Automotive Cybersecurity & Vehicle Cybersecurity


• ECU Security & secure E/E architectures


• Secure Boot, PKI, authentication & key management


• Incident Response & Digital Forensics


• Vehicle SOC (vSOC) operations


• Cloud Security for connected vehicle ecosystems

Key Responsibilities:

1.Cybersecurity Compliance & Governance

• Ensure organizational and product cybersecurity compliance with ISO 21434, UNECE R155 and R156.


• Support the development, rollout, and maturity evaluation of the Cyber Security Management System (CSMS).


• Align cybersecurity requirements across engineering, quality, compliance, and supplier teams.


• Prepare documentation and evidence for audits, regulatory submissions, and customer assessments.

2.Threat Analysis & Risk Assessment (TARA)

• Conduct comprehensive TARA activities using industry‑recognized methodologies.


• Identify cybersecurity risks for in‑vehicle functions, ECUs, and backend services.


• Define mitigation strategies, security goals, and cybersecurity requirements.


• Collaborate with safety teams to ensure alignment between HARA and cybersecurity.

3.Secure System & ECU Architecture

• Advise on secure E/E and ECU architecture design for modern vehicle platforms.


• Define and validate security controls including Secure Boot, HSM, certificate‑based authentication, and key lifecycle management.


• Review supplier specifications and technical documentation for cybersecurity gaps.

4.Incident Response & Operations

• Contribute to the definition and implementation of incident response processes for automotive ecosystems.


• Support analysis and remediation of cybersecurity incidents affecting vehicles, cloud services, and OTA systems.


• Help establish or operate a Vehicle SOC (vSOC), including log analysis, threat detection, and monitoring 

5.Software Update Security & Cloud Security

• Support secure OTA update design and compliance with UNECE R156.


• Assess cloud platforms for secure operation of connected vehicle services.


• Provide guidance on secure deployment pipelines, API security, IAM, and platform monitoring.

6.Stakeholder Communication, Training & German Interaction

• Communicate cybersecurity requirements and findings effectively to engineering and management teams.


• Provide cybersecurity training sessions to internal teams and suppliers.


• Use German language skills to interact with German‑speaking OEMs, suppliers, auditors, or regulators — a mandatory requirement for this role.