ZF Group

Senior Cybersecurity Engineer

ZF Group

full-time

Posted on:

Location Type: Office

Location: ShanghaiChina

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

Cyber Security

About the role

  • Establish and maintain the product cybersecurity management system and processes, including CIA discussion with customers, suppliers, etc.
  • Be responsible for establishing and continuously maintaining the Cybersecurity Management System (CSMS) for Div U, in accordance with international standards and regulations (e.g. ISO21434, UN R155) and customer requirements.
  • Lead product-level cybersecurity analysis including TARA (Threat Analysis and Risk Assessment).
  • Based on the TARA results, define specific security goals and technical security requirements, translating them into design inputs for hardware, software, and systems.
  • Organize security testing and vulnerability management.
  • Establish and oversee the product vulnerability management process.
  • Track, analyze, and risk-assess vulnerabilities discovered internally or reported externally.
  • Coordinate with development teams to define remediation plans and verify the fixes.
  • Oversee security incident response and lifecycle management.
  • Act as the technical lead in the event of a product-related security incident, guiding technical analysis, containment, and remediation efforts.

Requirements

  • Solid Foundation in Cybersecurity Technologies: In-depth understanding of network protocols, operating system security, cryptography, security architecture design, and common cyber-attack and defense techniques.
  • Specific Automotive Industry Knowledge and Experience: Must be familiar with automotive E/E.
  • Strong Penetration Testing and Vulnerability Management Capabilities: Capable of establishing and managing the full lifecycle of a vulnerability management process, including scanning, risk assessment, remediation tracking, and verification.
  • Excellent Analytical, and Communication & Coordination Skills: Should have systematic thinking, strong capability in Threat Analysis and Risk Assessment (TARA), able to translate abstract security threats into concrete technical requirements.
  • Ability to clearly explain security risks to non-technical stakeholders (e.g., project managers) and drive the implementation of security solutions across software development, hardware design, and systems architecture teams.
Benefits
  • Individual Growth: At ZF, you accelerate your career by working together across borders and cultures.
  • Experience Variety: Join ZF to shape future mobility and sustainable systems.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurity management systemTARAvulnerability managementpenetration testingnetwork protocolsoperating system securitycryptographysecurity architecture designrisk assessmentsecurity incident response
Soft Skills
analytical skillscommunication skillscoordination skillssystematic thinkingtechnical explanation