# Security Architect

**Company:** [Applied Intuition](https://hotfix.jobs/companies/applied-intuition)
**Location:** Sunnyvale, CA
**Role:** Security Engineering
**Salary:** $197k – $292k/yr
**Experience:** 7+ years
**Skills:** Iso/Sae 21434, Un R155, Un R156, Can Bus, Ethernet, Cryptography, Ecc, Jtag, Uart, Trace32, Vector Canoe, Wireshark, C++, Rust, Autosar Classic/Adaptive
**Posted:** 2026-04-21

> Leads design and implementation of cybersecurity architectures for automotive systems, ensuring compliance with ISO/SAE 21434 and UN R155/156 standards. Requires 7+ years in embedded automotive security, systems programming in C/C++/Rust, and threat analysis expertise.

## Job Description

## Responsibilities
- Develop cybersecurity architectures compliant with ISO/SAE 21434 engineering requirements and UN R155 Cybersecurity Management System (CSMS) mandates across all vehicle lifecycle phases (concept, development, production, operation, decommissioning)
- Implement UN R156-compliant Software Update Management Systems (SUMS) with secure OTA update mechanisms, cryptographic verification, and version control for automotive ECUs
- Conduct threat analysis and risk assessments (TARA) per ISO 21434 Annex C requirements, addressing 69 attack vectors identified in UN R155 Annex 5
- Design hardware-rooted security controls for automotive SoCs including secure boot, hardware security modules (HSM), and TEE implementations
- Collaborate with suppliers to ensure Tier 1/Tier 2 component security meets ISO 21434 supply chain requirements and UN R155 post-production obligations
- Develop automotive-specific security requirements for AI/ML systems in autonomous driving platforms, addressing model integrity and adversarial attack prevention

## Requirements
- 7+ years of hands-on experience designing and deploying security solutions for embedded automotive systems, with proven expertise in:
  - Automotive communication protocol security (**CAN bus hardening**, Ethernet intrusion detection)
  - Cryptographic engineering for resource-constrained environments (**ECC optimization**, post-quantum crypto prototyping)
- Proficiency in automotive security toolchains:
  - Embedded debug tools (**JTAG**, UART, Trace32)
  - Vehicle network analysis (**Vector CANoe**, Wireshark dissectors for SOME/IP)
  - ECU flashing and diagnostic tools (**ODX/PDX scripting**, UDS exploit development)
- Strong systems programming skills in **C/C++/Rust** for bare-metal and RTOS environments, with experience in:
  - Secure over-the-air update implementations
  - Real-time intrusion detection systems for vehicle networks
- Demonstrated ability to lead technical security initiatives, including:
  - Threat modeling for complex automotive architectures
  - Security code reviews for safety-critical embedded software
  - Mentoring junior engineers in secure coding practices
- Familiarity with automotive development workflows: **AUTOSAR Classic/Adaptive** security components

## Nice to have
- Contributions to open-source automotive security projects (e.g., **OpenXC**, **SavvyCAN**)
- Experience with autonomous vehicle sensor security (**LiDAR/Camera spoofing countermeasures**)
- Background in hardware security evaluation (**glitching**, fault injection, TEMPEST)
- Development of vehicle-specific penetration testing rigs (**CAN bus injectors**, ECU emulators)
- Public research on automotive vulnerabilities (**CVEs**, conference presentations, whitepapers)
- Secure boot implementation and hardware-rooted trust chains (**HSM provisioning**, TEE architectures)
- Reverse engineering and vulnerability research on automotive firmware (**ARM Cortex-M/R**, QNX, AUTOSAR)
- Experience with hardware security module integration
- Familiarity with **CI/CD pipelines** for ECU software with SBOM generation
- Familiarity with **Hardware-in-the-loop (HIL)** security testing

## Compensation
**Base salary range**: $197,400 - $292,393 USD annually (full-time position)

## Similar roles

- [Manager, Technology Risk](https://hotfix.jobs/jobs/f66bc489-9cb3-409f-ba8a-186457ea87cb) - Hinge Health - San Francisco, CA - $198k – $250k/yr
- [Senior Software Engineer, Enforce - Safety Processing](https://hotfix.jobs/jobs/e212d5d6-b31c-466e-ac7e-48d9fed1e0bf) - Discord - San Francisco, CA - $196k – $221k/yr
- [Senior Security Engineer, Enterprise Security](https://hotfix.jobs/jobs/5a7f8aa1-927f-4e47-9a57-10eca20a04f2) - Discord - San Francisco, CA - $196k – $221k/yr
- [Senior Security Engineer](https://hotfix.jobs/jobs/67ecbd99-dcbb-469e-85c6-80e4c16d9cc5) - Orb - San Francisco, CA - $195k – $265k/yr
- [Senior Security Engineer, Offensive Security](https://hotfix.jobs/jobs/360a6e5f-3142-48ee-b4d9-1586d318a5ce) - Datadog - New York, NY - $195k – $240k/yr

**Apply:** https://hotfix.jobs/jobs/a045fb65-7e62-4d44-a990-bb41ce1c4127
**Canonical:** https://hotfix.jobs/jobs/a045fb65-7e62-4d44-a990-bb41ce1c4127