General Motors

Staff Software Engineer – Vehicle Security

General Motors

full-time

Posted on:

Location Type: Hybrid

Location: WarrenMissouriUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

CloudCyber SecurityGoJavaLinuxPythonRTOS

About the role

  • Lead Security Architecture & Technical Ownership.
  • Define and evolve end-to-end software security architecture for Certificate Lifecycle Management across vehicle and backend systems.
  • Lead architecture design for security-critical vehicle domains including: Certificate Lifecycle Management, Connectivity platforms, Charging systems, Central compute and gateway systems.
  • Design and drive system-level cryptographic architecture (PKI hierarchy, trust anchors, provisioning, certificate rotation, and revocation).
  • Ensure alignment with global automotive cybersecurity standards, including: ISO/SAE 21434, UNECE WP.29 R155 and R156.
  • Drive Security-Critical Software Excellence.
  • Lead design and implementation reviews for: Certificate Lifecycle Management, Secure boot and firmware validation, Secure diagnostics and protected services, Key provisioning and lifecycle services, Secure communications (TLS, SecOC), Authentication and access control mechanisms.
  • Translate cybersecurity requirements into robust, testable, and traceable software designs.
  • Establish and guide secure implementation patterns across vehicle programs.
  • Influence Across Platforms & Teams.
  • Embed security-by-design principles into platform roadmaps and system planning.
  • Align embedded, cloud, and connectivity teams around unified trust and identity models.
  • Review and guide supplier security architectures for compliance and robustness.
  • Serve as the escalation point for complex cryptographic and architectural decisions.
  • Mentor & Elevate Engineering Capability.
  • Provide deep technical mentorship to engineers across vehicle and platform teams.
  • Elevate secure coding practices and architectural rigor.
  • Contribute reusable frameworks, libraries, and reference implementations.
  • Improve security tooling, automation, and CI/CD validation processes.

Requirements

  • Bachelor’s degree in Computer Engineering, Electrical Engineering, Computer Science, or a related technical field.
  • 8+ years of professional software engineering experience in embedded, systems, or platform software.
  • Strong proficiency in C/C++ and at least one of: Python, Java, or Go.
  • Hands-on experience with embedded or real-time systems, including: AUTOSAR Classic and/or Adaptive Embedded Linux RTOS-based systems.
  • Deep understanding of vehicle communication protocols: CAN, LIN, Ethernet SOME/IP, UDS, DoIP.
  • Demonstrated experience implementing: Cryptographic services and key management, Secure communications (TLS, IPsec), Authentication and authorization mechanisms.
  • Experience working with Hardware Security Modules (HSMs) and secure elements.
  • Strong background in threat modeling, secure coding practices, and code review processes.
  • Proven ability to lead technical initiatives across distributed, cross-functional teams.
  • Excellent analytical, problem-solving, and communication skills, with the ability to clearly document and review technical designs.
  • Ability to operate effectively in ambiguous environments and make sound architectural decisions with limited data.
Benefits
  • From day one, we're looking out for your well-being–at work and at home–so you can focus on realizing your ambitions.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
CC++PythonJavaGoAUTOSAREmbedded LinuxCryptographic servicesSecure communicationsThreat modeling
Soft Skills
Analytical skillsProblem-solving skillsCommunication skillsMentorshipLeadershipCollaborationTechnical documentationDecision-makingInfluencingAdaptability