Vehicle Security Team (VST) Senior Embedded Software Engineer

Canoo has developed breakthrough electric vehicles that are reinventing the automotive landscape with bold innovations in design, pioneering technologies, and a unique business model that defies traditional ownership to put customers first. Distinguished by its experienced team – totaling over 500 employees from leading technology and automotive companies – Canoo has designed a modular electric platform purpose-built to deliver maximum vehicle interior space and adaptable to support a wide range of vehicle applications for consumers and businesses. With offices around the country, the company is scaling quickly and seeking candidates who love to challenge themselves, are motivated by autonomy and purpose, and get things done.

The Canoo IT Department is looking for a Vehicle Security Team (VST) Senior Embedded Software Engineer, reporting to the Chief Information Security Officer (CISO), and engaging tightly with the Product Development teams to drive the security of Canoo’s In-Vehicle Electronic Platform (EPF).

VST is responsible for creating security detailed designs for the EPF, including countermeasure implementation necessary to mitigate risks associated with attack vectors inherent to telematic devices, LTE IOT devices, and connected vehicles and in-vehicle networks.

In addition to In-Vehicle security design and architecture, countermeasure implementation, and detailed policy/standard creation, the VST is responsible for:

• Continuous improvement of VST Testing Lab capability;
• Continuous improvement secure boot capabilities and cryptography detailed design and implementation;
• OTA and Diagnostic security;
• Communications security (e.g., LTE, BTE, In-Vehicle networks, cellular-links to Cloud, etc.);
• Teaming with Security’s DevSecOPs talent to continuously improve CI/CD pipelines feeding In-Vehicle software;
• Continuous improvement of Vehicle Security Monitoring capabilities and anomaly detection per TARA modeling and high-fidelity use cases.

The role ensures that In-Vehicle security is repeatable, automated and focused on the “Right” things. The VST solves existing and future needs, prioritizes efforts based on risk, and that roadmaps all things to help Canoo “Do it Better”.

You’ll work directly with the executive team in our Justin, TX office and collaborate with leaders across a wide range of functions including Product Engineering, Enterprise Architecture, Cloud and 3^rd Parties. You’ll also have the opportunity to learn from many experts across several technical disciplines.

• Focus on Telematics and Device Security
• Continuous creation of detailed Security requirements and technical Security standards
• Continuous improvement of overall In-Vehicle Security Architecture and impact assessment of changes to ensure overall security posture stays high
• Perform hands-on penetration testing of In-Vehicle embedded systems, devices, firmware, software and communications
• Drive and maintain threat modeling and TARA artifacts
• Ensure in-house as well as supplier ECU Cyber Security and testing
• Ensure security of OTA processes
• Engage and communicate VST goals across the Canoo community
• Foster the spirit of people development, collaboration, and continuous improvement consistent with Canoo core values
• Create and monitor strategic metrics to support assessment of progress against the VST strategy, vision, and overall operations

• In-depth and hands-on experience working with NXP, Infineon, and Nvidia (or similar platforms/technologies)
• In-depth and hands-on experience with MCUs & Application Processors
• Expert-level knowledge and hands-on experience with firmware security and hardening including the AutoSAR Crypto Stack
• Expert-level knowledge and hands-on experience with embedded Linux security and hardening, including secure boot, kernels, drivers, DTB, BSP, firewall, SELinux, Trustzones, and HSMs
• Expert-level knowledge and hands-on experience with C/C++ programming, Secure Programming Standard and SAST/DAST
• Expert-level knowledge and hands-on experience with cryptography, key management and PKI
• Expert-level knowledge and hands-on experience with any of the following: BLE security, chip security, telecommunication network security, Plug & Charge security, and/or In-Vehicle network security
• BS degree in Electrical Engineering, Computer Science or equivalent Engineering programs
• At least 5 years of experience with embedded systems, firmware OS, and/or IOT
• Strong work ethic with flexibility and adaptability to change
• Intellectual agility – the ability to learn and act on new information quickly and efficiently
• Able to challenge the status quo
• Strong communication as demonstrated through the presentation of strategy to different levels of the organization
• Excellent written and verbal communications including content creation through various mediums

• Experience in Cloud Engineering roles, including CI/CD, Terraform, etc.
• MS degree in Electrical Engineering, Computer Science or equivalent Engineering programs
• Demonstrated experience and understanding of automotive/technology development, manufacturing operations, and industrial dynamics

• Work in a high-growth start-up company that will redefine urban mobility
• Be part of an inspirational, energetic, collaborative, authentic, and diverse environment
• Participate in excellent benefits and a flexible PTO policy
• Participate in the Employee Equity Compensation Plan
• Enjoy a casual workplace with an unbelievable feeling of energy

Canoo is an equal opportunity-affirmative action employer and considers all qualified applicants for employment based on business needs, job requirements and individual qualifications without regard to race, color, religion, sex, age, disability, sexual orientation, gender identity or expression, marital status, past or present military service or any other status protected by the laws or regulations in the locations where we operate.

Any unsolicited resumes or candidate profiles submitted in response to our job posting shall be considered the property of Canoo Inc. and its subsidiaries and are not subject to payment of referral or placement fees if any such candidate is later hired by Canoo unless you have a signed written agreement in place with us which covers the applicable job posting.