Cyber Security Consultant

• Identify systems subject to cybersecurity regulations (e.g., UN ECE R155)
• Create, update, and maintain Data Flow Diagrams and Software Design Documents
• Ensure compliance with the organization’s Cyber Security Management System (CSMS)

Participate in system design meetings to assess cybersecurity risks and define related tasks; document and distribute meeting minutes.

Collaborate regularly with Enterprise Architects to design or update systems in alignment with IT standards.

Perform Threat Analysis and Risk Assessment (TARA) on systems and deliver detailed reports.

Define mitigation strategies and convert them into actionable items for development teams.

Design, assign, and execute mitigation tests; collect and centralize related evidence.

Verify mitigation implementations, identify any residual risks, and document them accordingly.

Review all cybersecurity-related documentation with relevant internal cybersecurity teams.

Assess system vulnerabilities based on severity, context (e.g., cloud images vs. application libraries), and relevance; communicate findings to development teams.

Additional Competencies:

• Familiarity with lean principles and continuous improvement methodologies
• Knowledge of ISO/SAE 21434 and ISO 26262 standards
• Strong analytical and problem-solving skills
• Fluent in English with excellent presentation skills