Description
We are seeking a Cybersecurity Analyst with hands-on experience in security monitoring and incident response, who is motivated to work in the challenging and rapidly evolving Automotive Cybersecurity domain.
In this role, you will investigate real security incidents and design and develop data-driven detection analytics that are integrated into large-scale monitoring systems.
You will help protect a fleet of over one million connected electric vehicles and work directly with leading automotive industry customers, serving as a technical security focal point.
Responsibilities:
- Monitor, triage, and analyze security events using IDS, SIEM, and monitoring platforms, prioritizing incidents based on severity and impact.
- Analyze large volumes of telemetry, logs, and security data using data analysis and visualization tools (e.g. Kibana) to identify trends and suspicious activity.
- Build and maintain baselines and behavioral profiles to distinguish between legitimate and malicious activity across large-scale vehicle fleets.
- Research attack techniques and threat actor activity relevant to automotive and connected vehicle environments.
- Design, develop, and maintain automated detection and correlation rules, including Python-based analytics, to identify suspicious scenarios across multiple events and vehicles.
- Continuously tune and improve detections based on case statistics and performance metrics to reduce false positives.
- Manage security cases end-to-end: investigation, documentation, tracking, and timely resolution.
- Collaborate directly with customers and internal teams to support investigations and continuously improve monitoring and response capabilities.
Requirements
Requirements:
- At least 3 years of experience as a Cyber Security Analyst, Security Monitoring Analyst, or Incident Response role.
- Strong understanding of security monitoring and incident response concepts.
- Solid knowledge of networking concepts and protocols (TCP/IP, DNS, HTTP/S, firewalls, proxies)
- Basic Linux knowledge (processes, logs, networking, CLI usage)
- Proficiency in Python for data analysis, scripting, or automation
- Proficiency in SQL for querying and analyzing security and operational data
- Familiarity with data visualization tools (e.g. Kibana, Tableau, Power BI)
- Hands-on experience with enterprise security platforms (SIEM, IDS/IPS, EDR)
- Strong analytical mindset, attention to detail, ability to work independently, and effectiveness in a team environment
- High level of English proficiency, including strong customer-facing and technical communication skills
Nice to Have (Plus):
- Experience developing detection logic or threat hunting methodologies
- Familiarity with Big Data frameworks and libraries (e.g. PySpark, Spark, Pandas, Elasticsearch)
- Vulnerability research or exploit analysis experience
- Experience with cloud environments or large-scale distributed systems
- Background or strong interest in the Automotive / Connected Vehicles domain
- BSc in Computer Science or a related technical discipline