Careers

Digital & IT

Security Officer – Car Security

Gothenburg, Sweden

Apply now

Security Officer – Car Security

We are currently looking for a Security Officer to own and lead the Car Security area for data, privacy, and cyber security. 

If you are reading this, you probably already know that Polestar is an electric performance car brand. We work hard to create a unique experience for the customer, owner, and driver. The thrill of driving the car, the digital experience of buying, owning, and controlling a Polestar require us to push the limits of technology and software development. Sustainability has been there from the beginning, and we have set a moonshot goal for climate-neutral cars in 2030. There is an ocean of opportunities in this for talented IT professionals who want to dive in and make a difference. 

The Information Security Department 

The Information Security department at Polestar is expanding as the company is growing. Polestar is active in many countries and more markets will come at a rapid pace. The connected car grows in complexity and gets more and more entangled with the backend systems. In Information Security we need to keep the company safe from a diverse set of threats. The main threats are cybersecurity-related and to protect against that, a solid foundation of security practices is needed.  

The department is organized in several areas. This role will be in the Information Security Standards & Coordination area where there are 4 people that will all be supporting different areas of the organization and internally responsible for the support to one of the following areas: Enterprise IT, Digital Products, Manufacturing, and Car Security. 

The other areas in the department will provide more specialized skills, like Secure Development practices, cryptography, Red Team/Pen testing, security architecture, and privacy to name a few. People that are interested in security sometimes have a somewhat diverse background and skill base. So will your colleagues and we will all complement each other. 

About the role  

The role is to coordinate the Car Security area and work with the R&D and other delivery units in Polestar and provide assistance around information and cyber security. You will help out in the rollout of security practices, help all scope and assess risks and then ensure the departments get the help they need from the other InfoSec colleagues. 

At Polestar we are still a new company. You will need to both work with policies and directives and be more practical in your work. You will report to the CISO of Polestar.

What you will do  

  • Help in writing Car Security requirements and assist in ensuring that the car and linked systems have adequate security level, starting from the cradle (design phases), under the lifetime (following the current threats and keeping risks updated) all the way to the end of life of the car.  
  • Work with the coordination of the security initiatives across the car programs and due to that, you need quite a wide security experience, ranging from embedded and car-related security to cloud security models and attacks. 
  • Balance security with convenience. We must focus on the efficiency of the employees as we are still a small organization and all the employees time is crucial to protect. 
  • Threat watch and education of people and staff for your area. This is a collective thing but you need to take special care of the threats related to the car and the connected services. Due to the R155 regulation, we are launching Threat Modeling and a structured risk assessment framework. Threat modeling is a great way to put the finger on areas that are sensitive in a way the developers can understand. There is an infinite number of good practices out there, but the real risks based on a real threat agent using a vulnerability is a different thing. So, you need to master the difference between risks and vulnerability. 
  • Together with the CISO, you will the main responsible for the Information Management System (ISMS) with all the policies, directives, and guidelines targeting the employees related to the car. In the same way, you are also responsible for the car Cyber Security Management System (CSMS) that is under construction. 
  • There is also other legislation that is driving investments into the security area. Data protection and privacy are on the rise and it is part of the job to ensure that we are compliant in full.  

Personal Qualities 

  • At Polestar we are building a new company. That requires that you are a shaper, i.e., you can create a process where the is none today and you are the one that proposes a solution.  
  • You want to create the best and most efficient protection for the company 
  • Open-minded. While you shape and create you reflect on how security can fit in a less intrusive way for the developers  
  • You can express what people must or need to do in a clear and convincing way 

Skills 

  • Experience in car/embedded security 
  • Knowledge in SDLC practices, Risk management, and Threat Modeling is essential.  
  • Knowledge in ISMS and any CSMS is really needed. Detailed Knowledge in R155 and ISO21434 is a plus. 
  • Good understanding of the current threat landscape and how to protect against them in an effective manner 
  • Good coordinating skills and experience from making roadmaps and plans on how to the rollout of security practices in complex environments 
  • Good scoping skills. Understanding legal requirements and incorporate that into your solution proposal is a plus. 


If you have questions, contact 

John Karman Head of Information Security (CISO)

+46 734340612 

[email protected]

 

Polestar - the guiding star

Polestar is an electric performance brand, determined to improve the society we live in by catalyzing the change to sustainable mobility. We are a global team of highly talented individuals who share a passion to change the world. We challenge conventions and we challenge ourselves for the purpose of innovation. We believe innovation is a team effort and that just like each component is critical to the performance of our cars each person working at Polestar is as important to the team and its performance. We work in close collaboration across empowered global teams that don’t settle for anything less than excellence.

Is this you? If you are interested in joining the Polestar family, don't wait with submitting your application. We apply a continuous selection process and the job post will be open until the position is filled.

Data Privacy Counsel

We have an exciting opportunity at Polestar for a data privacy counsel who can work within a fast-paced and challenging start-up organization. You will play an important role in the Polestar team.

Date
Category
Legal
Location
Gothenburg, Sweden

Data Privacy Counsel

We have an exciting opportunity at Polestar for a data privacy counsel who can work within a fast-paced and challenging start-up organization. You will play an important role in the Polestar team.

29.06.2021
Legal
Gothenburg, Sweden
Polestar © 2021 All rights reserved