Vehicle Cybersecurity IHU Apps Testing Engineer

Full Time
Warren, MI
Areas of Interest: Exploitation Analysis, Test and Evaluation, Vulnerability Assessment and Management
report a problem
Overview
The Vehicle Cybersecurity Infotainment Head Unit (IHU) Apps Testing Engineer position involves performing security research via vulnerability assessments, embedded penetration testing, reverse engineering, and product security testing on in vehicle infotainment applications contained within the infotainment head unit (IHU). 
 
TASKS AND RESPONSIBILITIES:
  • Perform security research against infotainment applications to identify security vulnerabilities.
  • Perform security scans against the in-vehicle infotainment applications and mobile apps.
  • Provide guidance on security scan results to infotainment and mobile app developers to remediate discovered security issues.
  • Support embedded security testing activities, both automated and manual, to identify and exploit vulnerabilities in embedded components, systems, applications, and network components in an effort to reduce risk and improve product security.
  • Document technical and logical security findings identified during the security assessments, and report them in a timely manner.
  • Make recommendations concerning the overall improvement of vehicle security posture through the proactive discovery of security weaknesses using penetration-testing techniques. 
  • Provide guidance on security controls and assist in troubleshooting problem areas as needed.
  • Collaborate and share knowledge with team members via formal and informal methods on a regular basis.  
  • Perform testing using defined methodologies and a combination of automated and manual tools. 
  • Execute tests independently or work as part of a testing team, taking direction from team lead(s) and executing directives in a thorough and timely fashion. 
  • Demonstrate critical thinking and creative analysis techniques in distilling test results, eliminating false positives and providing actionable recommendations for mitigation. 
  • Perform additional incidental duties as assigned by management or job responsibilities. 
 
The policy of General Motors is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity/expression or veteran status. Additionally, General Motors is committed to being an Equal Employment Opportunity Employer and offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us at Careers.Accommodations@GM.com. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.

REQUIRED EDUCATION:
  • Bachelor's degree (B.A. or B.S.) from four-year college or university; or equivalent training, education and experience may also be considered.
REQUIRED SKILLS/EXPERIENCE:
  • 2+ years experience carrying out security testing of Android based applications.
  • Experience carrying out web based penetration testing of HTML5 based web applications.
  • Hands-on self-starter with an innate aptitude for technology and is constantly looking to broaden their technical horizons.
  • Very strong verbal and written communication skills.
  • Ability to work collaboratively with individuals within both the technical community, IT leadership, and the business.
  • Ability to work constructively as an individual or in groups with minimal supervision.  
  • Ability to work in a team environment with aggressive deadlines and multiple priorities while staying a team player.
PREFERRED SKILLS:
  • Previous security research experience
  • 5+ years of experience carrying out security testing of Android based applications.
  • 2 + years of experience carrying out web based penetration testing of HTML5 based web applications.
  • Experience conducting reverse engineering to find security vulnerabilities in embedded devices and their associated firmware
  • Competency with security testing tools and procedures for information security.
  • Extensive technical computer/network/vehicle knowledge and understanding of computer/vehicle hardware, software, networks, communications and connectivity.
  • Experience with and/or knowledge of technologies used to secure embedded systems.
  • Technical proficiency in Python, HTML5, Java, JavaScript and deep knowledge of the security aspects of each language.



Share this job:

General Motors

made for more
At General Motors, we are passionate about designing, building and selling the world’s best vehicles. This vision unites us as a team each and every day and is the hallmark of our customer-driven culture. We set high standards for our company so that we can give you the best cars, trucks and SUVs. It’s our commitment to deliver vehicles with compelling designs, flawless quality and reliability, and leading safety, fuel economy and infotainment features. The very things that create that special bond between driver and vehicle. Whether it’s a Chevrolet, Buick, GMC, Cadillac, Opel, Vauxhall or Holden, making the world’s best vehicles can only happen with the world’s greatest employees. We take great pride in our work, and take great care to deliver exceptional cars and a positive ownership experience to our customers in 140 countries around the world.

Specialties
Cars, Trucks, Manufacturing, Automotive, Vehicles, Transportation
Visit General Motors's Social Media pages:
Company Industry: Automotive
Company Type: Public Company
Company Size: 10,001+