About the Company

Avaron AB is a growing consultancy that matches your expertise with the market's most interesting assignments, offering a platform where your professional development is central.

About the Assignment

In this role you will develop and operationalize cybersecurity methods used across an automotive engineering organization. You will work cross-functionally with method users (such as testers and developers) and tool developers to define, harmonize, and implement ways of working that are consistent, practical, and aligned with quality and compliance needs.

Job Description

• Define cybersecurity methods by collecting experience from teams and performing deep-dive analyses of user needs.
• Develop and document methods through structured stakeholder discussions.
• Identify tool needs and support tool development by defining functional specifications when required.
• Drive harmonization across engineering, quality, and compliance functions.
• Ensure consistent application of cybersecurity methods across the organization.
• Implement methods through training, coaching, and stakeholder support.
• Maintain, challenge, and continuously improve existing methods and frameworks.

Requirements

• Strong background in software development, preferably in embedded systems, or equivalent technical experience.
• Deep automotive cybersecurity expertise, including ISO/SAE 21434 (Road Vehicles Cybersecurity Engineering) and UN-ECE R155 (Cybersecurity Management Systems, CSMS).
• Experience with Threat Analysis and Risk Assessment (TARA).
• Cybersecurity concept development and requirements engineering experience.
• Experience integrating cybersecurity across the full automotive lifecycle (development, production, post-production).
• Understanding of risk-based management systems, including ISO 27001 and ISO 9001.
• University degree in a relevant technical field.
• English, fluent in both oral and written communication.

Nice to have

• UN-ECE R156 (Software Update Management Systems).
• ISO 26262 (Functional Safety) and understanding of its interface with cybersecurity.
• Experience with supplier cybersecurity interfaces (e.g., CS-DIA).
• Experience supporting type approval processes.
• Participation in audits or certification assessments.

Application

Selections are made on an ongoing basis, so we recommend that you apply as soon as possible.