Senior Cybersecurity Engineer – Aptiv Connected Services (Krakow & Remote)

Online interview
Employment contract
Remote possible
Paid vacation

Project description

About this position:

The Senior Cybersecurity Engineer will be responsible for assisting the security operations at Aptiv Connected Services. This position will work with various teams within Aptiv Connected Services in performing cybersecurity threat analysis, vulnerability management, risk assessments, and the development of remediation plans. The engineer will also be responsible for recommending and implementing internal information security related tools and automate those tools to streamline processes and improve response times to mitigate risk to the organization.

About Aptiv Connected Services and our project:

We are a new, independent division of Aptiv - we are a team who is a global provider of telematics and analytics solutions serving the transportation industry. We work with technologies such as big data, IoT, artificial intelligence, Embedded Linux platform, 5G networking, CI/CD/CM, and more. With teams working across the globe, Connected Services creates and delivers solutions that combine comprehensive data acquisition methods with powerful edge and cloud computing architecture resulting in an enterprise-class solution for fleet management, product development, connected vehicle and data exchange applications. Come join the Aptiv Connected Services team for a unique opportunity to work with and learn from experts, while also significantly contributing to the future of mobility! Mobility has the power to change the world, and we have the power to change mobility.

Approximately 65% of time include the following:

  • Work with the Risk and Compliance manager in conducting audits and risk assessments on Aptiv Connected Services IT systems and business processes
  • Monitor threats across multiple platforms to optimize response times to threats and vulnerabilities
  • Write scripts for automating security tools to improve efficiency of auditing, monitoring, and alerting of cybersecurity events
  • Identify and disseminate key findings from penetration test, vulnerability reports, and outcomes from DAST/SAST/IAST tools to Aptiv Connected Services IT and application development personnel

Approximately 35% of time includes:

  • Use of trouble tickets for response and resolution
  • Keep abreast of new security threats and make recommendations on mitigating threats against which may impact Aptiv Connected Services IT resources and intellectual property
  • Assist with development and maintenance of information security related policies, standards, and procedures

Who we're looking for?


  • Minimum bachelor’s degree in information technology, IT security, computer science, or related field
  • 3+ years of experience in an information technology, IT security, application development, or related roles
  • Experience with information technology best practices
  • Knowledge of NIST Cybersecurity Framework, NIST 800 series, ISO 27000 series, General Data Protection Regulation, or other privacy and cybersecurity frameworks
  • Working knowledge of Windows, Mac, and Linux based operating systems
  • Scripting or application development experience
  • CISSP, CCSP, CISM, GIAC, or other security certifications

What will make you stand out:

  • Experience in threat modeling using STRIDE and the OWASP Threat Dragon tool
  • Cloud security in AWS, Azure, or Google Cloud
  • Working knowledge of the Open Web Application Security Project (OWASP) Top 10
  • Familiarity with:
  1. Networking and network protocol analyzers 
  2. Authentication systems
  3. Scripting knowledge with Python, Bash, or PowerShell
  4. Firewalls, IDS/IPS, WAF, SIEM, DLP, DNS
  5. Hardware security modules and PKI
NIST Cybersecurity Framework
ISO 27000 series
How we manage our projects?
Scrum, Agile
Who makes architectural decisions?
Who makes technology stack decisions?
Architekt/Tech Lead z Zespołem
Project management software
How we code?
Version control
Code review
Static code analysis
Knowledge database
How we test?
Unit tests
Integration tests
Performance tests
Manual testing
Additional monitor
Operating system
Work environment
Tech supervisor
Open space
Flexible working hours
  • Healthcare package
Leisure package
  • Leisure package
  • Fruits
  • Hot beverages
  • Trainings
  • Conferences
  • Car parking
  • Bicycle parking
  • Integration events
  • Pracowniczy Program Emerytalny
  • Ubezpieczenie grupowe na życie
  • Bonus z okazji narodzin dziecka
  • Program wellbeing
  • Imprezy integracyjne

Our company


Krakow 3000+
Tech skills
  • C
  • C++
  • Jenkins

Check out similar job offers