HARMAN’s engineers and designers are creative, purposeful and agile. As part of this team, you’ll combine your technical expertise with innovative ideas to help drive cutting-edge solutions in the car, enterprise and connected ecosystem. Every day, you will push the boundaries of creative design, and HARMAN is committed to providing you with the opportunities, innovative technologies and resources to build a successful career.
A Career at HARMAN
As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do everyday.
About the Role
We’re looking for a Senior Security Infrastructure Engineer/ KMS to join our Global Product Cybersecurity. The security team has the charter to define external and internal interfaces for secure provisioning and trusted computing base TCB) updates of our embedded products and platforms.
As part of our work on foundational security and to enable Trusted Execution Environments, we are building the security infrastructure services necessary to support secure device provisioning and lifecycle management for the SOC-Integrated Root of Trust (RoT), and manage the trusted elements of the platform.
If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Automotive lines of business, then we want to talk to you.
What You Will Do
1. Collaborate closely with the Automation and SSDLC team to enable product security to be proactive part of our product development and maintenance process
2. Lead the design, development, and deployment of security infrastructure services for key management, manufacturing provisioning, certificate authority, and code signing
3. Lead the design and development of APIs, protocols and services for enumeration, configuration and management of platform assets
4. Lead the development of policies and procedures associated with key generation / management
5. Interface with manufacturing partners to install, troubleshoot and debug security provisioning aspects
6. Interface and lead SW teams to build the components required for hosting the services along with any SDKs required for partners
7. Day-to-day operations of security infrastructure services
What You Need
8. Bachelor or Master Degree in Computer Science or a technical subject area, with 4+ years of industry experience in a developer role with security background
9. Proficiency programming in C/C++/Java or equivalent UI capable language and/or programming in Python or equivalent scripting language
10. Full stack developer with fault-tolerant systems experience and security background
11. Knowledge of hardware security module (HSM) appliance integration and coding for code signing services, secure payload decryption, certificate signing, device ID generation, etc.
12. Ability to understand complex vehicle systems, identify their attack surface and prioritize attack vectors
13. Experience with integrating remote systems with automatic test equipment (ATE)
14. Operational experience in deploying and maintaining an HSM, code-signing, access control management, web services deployment, software upgrades, CI/CD flows
15. Understanding of security flows, key generation, secure key delivery, access control tokens, key cards, n of m quorums, and other secure processes
16. Understanding of crypto primitives such as keys, signatures, certificates, etc.
17. VPN, SSL, secure connection experience (programming and configuration)
18. Strong German language level
19. Ability to communicate openly and empathetically, and a strong team player
20. Bold, innovative and enjoy challenging yourself
What is Nice to Have
21. Automotive cybersecurity experience (preferably from Tier-1 or OEM)
22. Experienced with Docker, containerization, microservices, ECS, Kubernetes, CloudHSM
23. 6+ years’ in the encryption and key management security discipline
24. Experience in IoT / Embedded systems security engineering
25. Active participation of conferences, consortiums, CTFs (capture the flag) or publications, blogs or repositories of past Cybersecurity work
What We Offer
26. HARMAN offers a diverse and inclusive work environment that fosters and encourages career development opportunities, professional training and competitive market base compensation
27. You will also receive top-notch employee discounts on Harman’s Consumer Audio (JBL, AKG, HARMAN Kardon) and Samsung products
28. Flexible work schedule with a culture encouraging work life integration and collaboration in a global friendly working atmosphere and good work-life-balance
29. Attractive salary package based on the Metall & Elektro Tarif Baden Wurttemberg and an Employer contribution towards a company pension plan
30. Professional development opportunities through HARMAN University’s business and leadership academies which also includes extensive technical trainings
31. Internal talent management leadership acceleration programs
32. “Be Brilliant” employee recognition and rewards program
HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard torace, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.