System Cybersecurity Engineer

A career at Lilium is for those who want to do something extraordinary. We take pride in pushing the boundaries of engineering, technology and customer experience.  

As part of a team, you will tackle challenges and deliver something that has never been done before. By joining Lilium you will have the opportunity to work with a world-class entrepreneurial team of more than  800 people who are as passionate about changing the world as you are.  

You will always act with safety and integrity in mind and embody our core behaviors of efficient and positive collaboration, ownership of time, continuous improvements and, ultimately delivering results.

We thrive on diversity and creating an inclusive culture, with more than 50 nationalities currently working hard to bring our vision of a sustainable world to life. 

Your role and your team:  

As a System Cybersecurity Engineer, you are responsible for performing and support the security development activities within the aircraft program. You will have the opportunity to engage in the entire eVTOL product security activities, from defining the security scope to performing the security risk assessment, defining security measures, testing the product, following it during the operation till its decommissioning. 

You will report directly to the Manager Aircraft Cybersecurity and interface with Chief engineer and eVTOL system’s team leaders. The aircraft cybersecurity team is responsible for the definition of processes and methods (eVTOL is a new class of aircraft and Airworthiness Security Process is a quite new concept) to meet airworthiness security regulations and support the development of security measures for airborne systems and supporting tools for eVTOL. 

This is a key role to collaborate with multidisciplinary project teams to meet regulatory framework, customer's needs and define the overall security architecture. You will have the chance to act as a subject matter expert across the program to guide system engineering teams towards a secure-by-design product and to feel the emotion of the first flight of our product. 

Your day to day: 

• Define security processes, methods and working instructions for the development of eVTOL
• Security development activities for the aircraft and its systems, including definition of security measures on technical and procedural level to mitigate identified risks
• Co-operate with system engineering and hardware/software development teams
• Lead and/or participate in the aircraft security architecture activities
• Develop and maintain best practices and security development standards for next-generation airborne systems
• Provide subject matter expert support, awareness, and training to system engineering within the company
• Support security related customer milestones and assessments
• Eventually engage with civil aviation authorities like EASA and FAA
• Collaborate with the creation of standards that will be used in aviation through involvement with EUROCAE activities
• Gain knowledge in a new and growing industry
• Engage with suppliers to drive the development of security measures ensuring airworthiness security along the entire supply chain

 Your Profile: 

• Computer or Embedded System Engineering, or ICS/IT Security
• At least 2 years of experience in security engineeringor embedded systems or ICS
• Willingness to share Knowledge 
• Knowledge of at least one of the following security standards/guidelines (ED-200 series, SAE J3061, IEC 62443, ISO 27000 series, ISO 21434, NIST SP 800-series)
• Fluent English language skills are essential
• Team oriented workstyle
• Analytic problem-solving skills needed
• Knowledge of security-by-design engineering approach

Valued aspects: 

• Knowledge about NIST SP800-160
• Applied knowledge of security risk assessment and management approaches for complex systems including embedded devices
• Knowledge of standard cryptographic algorithms
• Knowledge of classical design flaws as well as vulnerabilities deriving from implementations
• Knowledge of aeronautical networking and communication protocols and/or embedded system or industrial controls systems technologies
• Knowledge about Agile development tools and frameworks
• Knowledge about NIST Cybersecurity Framework
• Knowledge about security verification and security testing tools
• A security certification in, e.g., CRISC, OSCP, CEH, CISSP, ECSA, or related
• Ability to develop and explain technical decisions and recommendations effectively with technical and non-technical audiences through verbal and written communications that lead to actionable and measurable improvements

#LI-K1

Life at Lilium:

The wellbeing of our employees is a high priority. In our HQ we have many initiatives such as free healthy food and drinks, free in-house gym and health days. In remote offices we offer online opportunities to stay connected and develop yourself as well including our culture club, free e-library, learning terminal, Employee Assistance Program and many more.

 Lilium is an equal opportunity employer and welcomes applications from all qualified individuals regardless of ethnicity, sex, disability, religion/belief, sexual orientation or age.