[Skip To Content]

Staff Software Engineer – Vehicle Security

  • Emplacement
    • Milford, Michigan
    • Warren, Michigan
  • Type d'emploi Full time
  • Posté
  • Job Requisition JR-202603922

Description

The Role

GM’s  Product Cybersecurity Team  safeguards the security and integrity of our vehicle platforms, embedded systems, and connected services across the entire product lifecycle. Our mission is to proactively defend GM products against evolving cyber threats by engineering cybersecurity into every phase — from concept and architecture through development, validation, production, and in-field operation. We seek product cybersecurity professionals with advanced expertise in secure system design, embedded and automotive security, and risk-based threat analysis, capable of driving security-by-design principles, ensuring compliance with global regulations and standards, and strengthening the resilience of GM’s vehicles and mobility ecosystems.

We are seeking a Staff Software Engineer  to serve as a senior technical authority for Certificate Lifecycle Management (CLM) and vehicle security architecture.

In this highly impactful role, you will define and drive secure-by-design architecture for identity, key management, and certificate infrastructure spanning vehicle ECUs, connectivity platforms, and backend systems. This is a deep technical leadership position with broad architectural influence across multiple engineering teams — without direct people management responsibilities. You will directly shape the security foundation of next-generation software-defined vehicles. Your architectural decisions will protect vehicle identity, secure communications, and ensure compliance with global cybersecurity regulations. This is a high-visibility, high-impact opportunity to influence the future of automotive security at scale.

What You’ll Do

Lead Security Architecture & Technical Ownership

  • Define and evolve end-to-end software security architecture for Certificate Lifecycle Management across vehicle and backend systems.
  • Lead architecture design for security-critical vehicle domains including:
    • Certificate Lifecycle Management
    • Connectivity platforms
    • Charging systems
    • Central compute and gateway systems
  • Design and drive system-level cryptographic architecture (PKI hierarchy, trust anchors, provisioning, certificate rotation, and revocation).
  • Ensure alignment with global automotive cybersecurity standards, including:
    • ISO/SAE 21434
    • UNECE WP.29 R155 and R156

Drive Security-Critical Software Excellence

  • Lead design and implementation reviews for:
    • Certificate Lifecycle Management
    • Secure boot and firmware validation
    • Secure diagnostics and protected services
    • Key provisioning and lifecycle services
    • Secure communications (TLS, SecOC)
    • Authentication and access control mechanisms
  • Translate cybersecurity requirements into robust, testable, and traceable software designs.
  • Establish and guide secure implementation patterns across vehicle programs.

Influence Across Platforms & Teams

  • Embed security-by-design principles into platform roadmaps and system planning.
  • Align embedded, cloud, and connectivity teams around unified trust and identity models.
  • Review and guide supplier security architectures for compliance and robustness.
  • Serve as the escalation point for complex cryptographic and architectural decisions.

Mentor & Elevate Engineering Capability

  • Provide deep technical mentorship to engineers across vehicle and platform teams.
  • Elevate secure coding practices and architectural rigor.
  • Contribute reusable frameworks, libraries, and reference implementations.
  • Improve security tooling, automation, and CI/CD validation processes.

Your Skills & Abilities (Required Qualifications)

  • Bachelor’s degree in Computer Engineering, Electrical Engineering, Computer Science, or a related technical field.
  • 8+ years of professional software engineering experience in embedded, systems, or platform software.
  • Strong proficiency in C/C++ and at least one of: Python, Java, or Go .
  • Hands-on experience with embedded or real-time systems, including:
    • AUTOSAR Classic and/or Adaptive
    • Embedded Linux
    • RTOS-based systems
  • Deep understanding of vehicle communication protocols:
    • CAN, LIN, Ethernet
    • SOME/IP, UDS, DoIP
  • Demonstrated experience implementing:
    • Cryptographic services and key management
    • Secure communications ( TLS, IPsec )
    • Authentication and authorization mechanisms
  • Experience working with Hardware Security Modules (HSMs) and secure elements.
  • Strong background in threat modeling, secure coding practices, and code review processes.
  • Proven ability to lead technical initiatives across distributed, cross-functional teams.
  • Excellent analytical, problem-solving, and communication skills, with the ability to clearly document and review technical designs.
  • Ability to operate effectively in ambiguous environments and make sound architectural decisions with limited data.

GM does not provide immigration-related sponsorship for this role. Do not apply for this role if you will need GM immigration sponsorship now or in the future. This includes direct company sponsorship, entry of GM as the immigration employer of record on a government form, and any work authorization requiring a written submission or other immigration support from the company (e.g., H1-B, OPT, STEM OPT, CPT, TN, J-1, etc.)

Ce poste est hybride. Cela signifie que le candidat retenu doit se rendre sur un site donné au moins trois fois par semaine {ou à une autre fréquence imposée par son supérieur hiérarchique}.

Ce poste peut donner droit à des indemnités de déménagement.

Renseignements sur la diversité

General Motors est résolue à être un lieu de travail qui est non seulement exempt de discrimination illégale, mais aussi un endroit qui favorise véritablement l'inclusion et l'appartenance. Nous sommes convaincus que la diversité de la main-d'œuvre permet de créer un environnement dans lequel nos employés peuvent s'épanouir et développer de meilleurs produits pour nos clients. Nous encourageons les candidats intéressés à consulter les principales responsabilités et compétences requises pour chaque rôle et à postuler à tout poste qui leur correspond. Dans le cadre du processus de recrutement, les candidats peuvent devoir, le cas échéant, réussir une évaluation liée au poste ou une présélection d'emploi avant d'être embauchés.  Pour en savoir plus, consultez notre processus de recrutement.

Déclaration concernant l'égalité d'accès à l'emploi (É.-U.)

General Motors est fière d'être un employeur souscrivant au principe de l'égalité d'accès à l'emploi.  Tous les candidats qualifiés seront pris en compte, sans égard à la race, à la couleur, à la religion, au sexe, à l'orientation sexuelle, à l'identité de genre, à l'origine ethnique, aux situations de handicap ou au statut protégé d'ancien combattant. 

Aménagements (É.-U. et Canada)

General Motors offre des occasions à tous les chercheurs d'emploi, y compris les personnes handicapées. Si vous avez besoin d'un accommodement raisonnable pour vous aider dans votre recherche d'emploi ou la soumission de votre candidature, envoyez-nous un courriel à l'adresse [email protected] ou appelez-nous au 800 865-7580. Veuillez inclure dans votre courriel une description spécifique du type d'accommodement demandé, ainsi que le titre d'emploi et le numéro de demande du poste auquel vous postulez.