Home › Companies › Soprasteria1 › Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443
Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443
Soprasteria1 · Montréal, QC, Canada · Active · SmartRecruiters
Job facts
| Field | Value |
|---|---|
| Company | Soprasteria1 |
| Title | Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443 |
| Normalized title | - |
| Department / team | Cyber Security |
| Location | Montréal, QC, Canada |
| Work model | - |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | SmartRecruiters |
| Posted / first seen | 2026-06-03 / 2026-06-04 |
| Changed / last seen | 2026-06-04 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Soprasteria1. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through SmartRecruiters. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Montréal. | Open |
| Department jobs | Active postings in Cyber Security. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Soprasteria1 |
| Source | f0cea485-00c0-49d1-9b16-9bb8a599716d |
| ATS provider | SmartRecruiters |
Description
CS Group Canada, a subsidiary of CS Group (part of the Sopra Steria Group), is a leader in the development and certification of safety-critical systems in the aerospace, electric, and autonomous driving industries.
Joining CS Group Canada means taking part in complex, high-tech projects for some of the most prestigious system manufacturers in North America, while benefiting from competitive salaries, comprehensive benefits, and flexible work arrangements.
As a Cybersecurity Engineer – Embedded Products, you will play a central role in ensuring the security and compliance of our customers’ vehicle systems and ECU architectures. Your responsibilities include:
Perform a comprehensive risk assessment of the current system architecture and identify item-level functions by applying the TARA process via recognized methods (e.g., ISO/SAE 21434 TARA, STRIDE, or similar). Build and review item definitions, identify critical assets, potential attack vectors, threat scenarios, and evaluate associated risks at both ECU and vehicle levels. Derive Cybersecurity Goals and Cybersecurity Requirements (hardware, firmware, and system-level design) from the TARA results and ensure traceability throughout the product development lifecycle. Contribute to the Cybersecurity Concept (CSC) and ensure alignment with ISO/SAE 21434 and regulatory requirements. Collaborate with system, software, and hardware engineering teams to integrate recommended security measures (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms). Evaluate protocols usage and propose cybersecurity countermeasures such as authentication, encryption, replay protection, secure pairing, and robust key management. Support validation activities for cybersecurity controls and participate in audits, reviews, and documentation of findings. Support compliance and customer requirements aligned with standards and frameworks (as applicable): CRA, ISO/SAE 21434, RED-DA, IEC 62443, NIST, etc.
Bachelor’s or Master’s degree in Software, Electrical, Computer, or Automotive Engineering or a related field. 3–10 years of experience in automotive cybersecurity or embedded systems cybersecurity, with hands-on experience on TARA based on ISO/SAE 21434 processes. Solid foundation in embedded systems architecture, including deep understanding of MCU/SoC design constraints, real-time and Linux-based environments. Proficient with boot architectures and low-level debugging using interfaces such as JTAG, XCP and SWD. Solid understanding of communication protocols (CAN, CAN-FD, Automotive Ethernet, SOME/IP, UDS, UART, SPI, BT, Wi-Fi, USB, NFC, cellular, RF, etc.), and embedded security mechanisms (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms). Proven ability to define Cybersecurity Goals and claims, derive Requirements, and ensure traceability through the development lifecycle. Excellent analytical, problem-solving, and documentation skills. Ability to work collaboratively with multi-disciplinary, multi-site engineering teams. Preferred / Asset Qualifications:
Experience with embedded systems, or safety-critical ECUs. Hands-on experience in cybersecurity validation and testing (fuzzing, robustness testing, penetration testing). Knowledge of Cybersecurity Case preparation and internal/external audit processes. Familiarity with regulatory requirements such as UNECE R155/R156, CRA and standards such as ISO 21434, IEC 62443. Exposure to hardware security modules (TPM, Secure Element, HSM), TrustZone, MPU/MMU Understanding of Software Bill of Material (SBOM), product security incident response (PSIRT) processes and vulnerability monitoring and management (CVE/CWE/CVSS).
Please note that only selected candidates and Permanent Residents/Canadian Citizens will be contacted.
Job Types: Full-time, Permanent
CS Group Canada values diversity in the workplace and encourages women, visible minorities, ethnic minorities, aboriginal people, and people with disabilities to apply.
Benefits:
Hybrid Work Industry leading medical, dental, and vision Insurance Access to a telemedicine service RRSP program Personal and sick days Recreation room with pool table and foosball table All your information will be kept confidential according to EEO guidelines.
Full job record
| Job ID | 379c804ffdfea8a377612d3386690d216b4a40c1 |
| Org ID | d4c5a77b-05fa-44eb-a2a4-c5dbfe1c7376 |
| Source ID | f0cea485-00c0-49d1-9b16-9bb8a599716d |
| Board ID | f0cea485-00c0-49d1-9b16-9bb8a599716d |
| Provider | smartrecruiters |
| Provider Job Key | 744000130105159 |
| Title | Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443 |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Montréal, QC, Canada |
| Department | Cyber Security |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | Canada |
| Region | QC |
| City | Montréal |
| Salary Raw | CS Group Canada, a subsidiary of CS Group (part of the Sopra Steria Group), is a leader in the development and certification of safety-critical systems in the aerospace, electric, and autonomous driving industries. Joining CS Group Canada means taking part in complex, high-tech projects for some of the most prestigious system manufacturers in North America, while benefiting from competitive salaries, comprehensive benefits, and flexible work arrangements. As a Cybersecurity Engineer – Embedded Products, you will play a central role in ensuring the security and compliance of our customers’ vehicle systems and ECU architectures. Your responsibilities include: Perform a comprehensive risk assessment of the current system architecture and identify item-level functions by applying the TARA process via recognized methods (e.g., ISO/SAE 21434 TARA, STRIDE, or similar). Build and review item definitions, identify critical assets, potential attack vectors, threat scenarios, and evaluate associated risks at both ECU and vehicle levels. Derive Cybersecurity Goals and Cybersecurity Requirements (hardware, firmware, and system-level design) from the TARA results and ensure traceability throughout the product development lifecycle. Contribute to the Cybersecurity Concept (CSC) and ensure alignment with ISO/SAE 21434 and regulatory requirements. Collaborate with system, software, and hardware engineering teams to integrate recommended security measures (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms). Evaluate protocols usage and propose cybersecurity countermeasures such as authentication, encryption, replay protection, secure pairing, and robust key management. Support validation activities for cybersecurity controls and participate in audits, reviews, and documentation of findings. Support compliance and customer requirements aligned with standards and frameworks (as applicable): CRA, ISO/SAE 21434, RED-DA, IEC 62443, NIST, etc. Bachelor’s or Master’s degree in Software, Electrical, Computer, or Automotive Engineering or a related field. 3–10 years of experience in automotive cybersecurity or embedded systems cybersecurity, with hands-on experience on TARA based on ISO/SAE 21434 processes. Solid foundation in embedded systems architecture, including deep understanding of MCU/SoC design constraints, real-time and Linux-based environments. Proficient with boot architectures and low-level debugging using interfaces such as JTAG, XCP and SWD. Solid understanding of communication protocols (CAN, CAN-FD, Automotive Ethernet, SOME/IP, UDS, UART, SPI, BT, Wi-Fi, USB, NFC, cellular, RF, etc.), and embedded security mechanisms (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms). Proven ability to define Cybersecurity Goals and claims, derive Requirements, and ensure traceability through the development lifecycle. Excellent analytical, problem-solving, and documentation skills. Ability to work collaboratively with multi-disciplinary, multi-site engineering teams. Preferred / Asset Qualifications: Experience with embedded systems, or safety-critical ECUs. Hands-on experience in cybersecurity validation and testing (fuzzing, robustness testing, penetration testing). Knowledge of Cybersecurity Case preparation and internal/external audit processes. Familiarity with regulatory requirements such as UNECE R155/R156, CRA and standards such as ISO 21434, IEC 62443. Exposure to hardware security modules (TPM, Secure Element, HSM), TrustZone, MPU/MMU Understanding of Software Bill of Material (SBOM), product security incident response (PSIRT) processes and vulnerability monitoring and management (CVE/CWE/CVSS). Please note that only selected candidates and Permanent Residents/Canadian Citizens will be contacted. Job Types: Full-time, Permanent CS Group Canada values diversity in the workplace and encourages women, visible minorities, ethnic minorities, aboriginal people, and people with disabilities to apply. Benefits: Hybrid Work Industry leading medical, dental, and vision Insurance Access to a telemedicine service RRSP program Personal and sick days Recreation room with pool table and foosball table All your information will be kept confidential according to EEO guidelines. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://jobs.smartrecruiters.com/SopraSteria1/744000130105159-embedded-product-cybersecurity-expert-iso-21434-iec-62443 |
| Apply URL | https://jobs.smartrecruiters.com/SopraSteria1/744000130105159-embedded-product-cybersecurity-expert-iso-21434-iec-62443?oga=true |
| First Seen At | 2026-06-04 12:15:03Z |
| Last Seen At | 2026-06-06 10:51:36Z |
| Last Checked At | 2026-06-06 10:51:36Z |
| Last Changed At | 2026-06-04 12:15:03Z |
| Inactive At | — |
| Source Posted At | 2026-06-03 23:41:18Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=smartrecruiters/board=soprasteria1/date=2026-06-06/2026-06-06T10-51-22-643Z-c05c5a8c252f09f2cd22c8bb76db073372748bd3cc9da05bc43478b8a5e9699e.json |
Event Fields
{
"content_hash": "498b8220484458ea73770fadd9872c3d2f14b505e56966e8f1e4a952c3d9c6fc",
"source_hash": "8a9746efbdc8a81a3be59b400d092cff7111ffa1c2b3778926b7c218f4960696",
"last_changed_at": "2026-06-04T12:15:03.149Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Montréal, QC, Canada",
"city": "Montréal",
"region": "QC",
"country": "Canada",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T10:51:36.439Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Montréal, QC, Canada",
"city": "Montréal",
"region": "QC",
"country": "Canada",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"Canada"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"id": "744000130105159",
"ref": "https://api.smartrecruiters.com/v1/companies/soprasteria1/postings/744000130105159",
"name": "Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443",
"uuid": "663000be-3072-4b01-b60c-2ace80041223",
"detail": {
"id": "744000130105159",
"name": "Embedded Product Cybersecurity Expert / ISO 21434, IEC 62443",
"uuid": "663000be-3072-4b01-b60c-2ace80041223",
"jobAd": {
"sections": {
"jobDescription": {
"text": "<p>As a Cybersecurity Engineer – Embedded Products, you will play a central role in ensuring the security and compliance of our customers’ vehicle systems and ECU architectures. Your responsibilities include:</p><ul><li>Perform a comprehensive<strong> risk assessment</strong> of the current system architecture and identify item-level functions by applying the <strong>TARA process </strong>via recognized methods (e.g., ISO/SAE 21434 TARA, STRIDE, or similar).</li><li>Build and review item definitions, identify critical assets, potential attack vectors, threat scenarios, and evaluate associated risks at both ECU and vehicle levels.</li><li>Derive <strong>Cybersecurity Goals </strong>and <strong>Cybersecurity Requirements</strong> (hardware, firmware, and system-level design) from the TARA results and ensure traceability throughout the product development lifecycle.</li><li>Contribute to the <strong>Cybersecurity Concept (CSC) </strong>and ensure alignment with ISO/SAE 21434 and regulatory requirements.</li><li>Collaborate with system, software, and hardware engineering teams to integrate recommended security measures (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms).</li><li>Evaluate protocols usage and propose cybersecurity countermeasures such as authentication, encryption, replay protection, secure pairing, and robust key management.</li><li>Support validation activities for cybersecurity controls and participate in audits, reviews, and documentation of findings.</li><li>Support compliance and customer requirements aligned with standards and frameworks (as applicable): CRA, ISO/SAE 21434, RED-DA, IEC 62443, NIST, etc.</li></ul>",
"title": "Job Description"
},
"qualifications": {
"text": "<ul><li>Bachelor’s or Master’s degree in Software, Electrical, Computer, or Automotive Engineering or a related field.</li><li>3–10 years of experience in automotive cybersecurity or embedded systems cybersecurity, with hands-on experience on TARA based on ISO/SAE 21434 processes.</li><li>Solid foundation in embedded systems architecture, including deep understanding of MCU/SoC design constraints, real-time and Linux-based environments.</li><li>Proficient with boot architectures and low-level debugging using interfaces such as JTAG, XCP and SWD.</li><li>Solid understanding of communication protocols (CAN, CAN-FD, Automotive Ethernet, SOME/IP, UDS, UART, SPI, BT, Wi-Fi, USB, NFC, cellular, RF, etc.), and embedded security mechanisms (cryptography, secure boot, secure communication, key management, hardware root of trust, debug protections, memory protection, key storage and secure update mechanisms).</li><li>Proven ability to define Cybersecurity Goals and claims, derive Requirements, and ensure traceability through the development lifecycle.</li><li>Excellent analytical, problem-solving, and documentation skills.</li><li>Ability to work collaboratively with multi-disciplinary, multi-site engineering teams.</li></ul><p><strong>Preferred / Asset Qualifications:</strong></p><ul><li>Experience with embedded systems, or safety-critical ECUs.</li><li>Hands-on experience in cybersecurity validation and testing (fuzzing, robustness testing, penetration testing).</li><li>Knowledge of Cybersecurity Case preparation and internal/external audit processes.</li><li>Familiarity with regulatory requirements such as UNECE R155/R156, CRA and standards such as ISO 21434, IEC 62443.</li><li>Exposure to hardware security modules (TPM, Secure Element, HSM), TrustZone, MPU/MMU</li><li>Understanding of Software Bill of Material (SBOM), product security incident response (PSIRT) processes and vulnerability monitoring and management (CVE/CWE/CVSS).</li></ul>",
"title": "Qualifications"
},
"companyDescription": {
"text": "<p>CS Group Canada, a subsidiary of CS Group (part of the Sopra Steria Group), is a leader in the development and certification of safety-critical systems in the aerospace, electric, and autonomous driving industries.</p><p>Joining CS Group Canada means taking part in complex, high-tech projects for some of the most prestigious system manufacturers in North America, while benefiting from competitive salaries, comprehensive benefits, and flexible work arrangements.</p>",
"title": "Company Description"
},
"additionalInformation": {
"text": "<p><em><strong>Please note that only selected candidates and Permanent Residents/Canadian Citizens will be contacted.</strong></em></p><p>Job Types: Full-time, Permanent</p><p><em>CS Group Canada values diversity in the workplace and encourages women, visible minorities, ethnic minorities, aboriginal people, and people with disabilities to apply.</em></p><p><u><strong>Benefits:</strong></u></p><ul><li>Hybrid Work </li><li>Industry leading medical, dental, and vision Insurance</li><li>Access to a telemedicine service</li><li>RRSP program</li><li>Personal and sick days</li><li>Recreation room with pool table and foosball table</li></ul><p>All your information will be kept confidential according to EEO guidelines.</p>",
"title": "Additional Information"
}
}
},
"jobId": "b1c10268-f4b1-4b3d-b3be-d4936b955587",
"active": true,
"company": {
"name": "Sopra Steria",
"identifier": "SopraSteria1"
},
"creator": {
"name": "",
"avatarUrl": ""
},
"jobAdId": "ab6c865f-12e5-4ae9-ae03-07f3a7b3dcbc",
"applyUrl": "https://jobs.smartrecruiters.com/SopraSteria1/744000130105159-embedded-product-cybersecurity-expert-iso-21434-iec-62443?oga=true",
"function": {
"id": "information_technology",
"label": "Information Technology"
},
"industry": {
"id": "it_and_services",
"label": "Information Technology And Services"
},
"language": {
"code": "en",
"label": "English",
"labelNative": "English (US)"
},
"location": {
"city": "Montréal",
"hybrid": false,
"region": "QC",
"remote": false,
"address": "400 Avenue Sainte-Croix",
"country": "ca",
"latitude": "45.5089824",
"longitude": "-73.6694365",
"postalCode": "H4N 3K4",
"fullLocation": "Montréal, QC, Canada"
},
"refNumber": "REF15715H",
"department": {
"id": 5300845,
"label": "Cyber Security"
},
"postingUrl": "https://jobs.smartrecruiters.com/SopraSteria1/744000130105159-embedded-product-cybersecurity-expert-iso-21434-iec-62443",
"visibility": "PUBLIC",
"customField": [
{
"fieldId": "6419e19b65322a00cb96743c",
"valueId": "922921b7-f2cd-4ced-a6b0-3e918869beb7",
"fieldLabel": "Type of Contract",
"valueLabel": "Permanent"
},
{
"fieldId": "6419e14b825d686b7de49aa3",
"valueId": "STANDA",
"fieldLabel": "Nature of Contract",
"valueLabel": "Standard"
},
{
"fieldId": "COUNTRY",
"valueId": "ca",
"fieldLabel": "Country/Region",
"valueLabel": "Canada"
},
{
"fieldId": "632c5097a7443e41fb446e2d",
"valueId": "7f0efb98-26a4-4756-b8c9-71270963c53d",
"fieldLabel": "Brands",
"valueLabel": "CS Group"
},
{
"fieldId": "632c5097a7443e41fb446e2e",
"valueId": "5300845",
"fieldLabel": "Department",
"valueLabel": "Cyber Security"
},
{
"fieldId": "6419e10d65322a00cb96743b",
"valueId": "4435b201-b999-426f-a491-692fb88b64d7",
"fieldLabel": "Total Experience Expected",
"valueLabel": "6 to 10 years"
}
],
"referralUrl": "https://jobs.smartrecruiters.com/external-referrals/company/SopraSteria1/publication/663000be-3072-4b01-b60c-2ace80041223?dcr_ci=SopraSteria1",
"defaultJobAd": true,
"releasedDate": "2026-06-03T23:41:18.758Z",
"experienceLevel": {
"id": "executive",
"label": "Executive"
},
"typeOfEmployment": {
"id": "permanent",
"label": "Full-time"
}
},
"company": {
"name": "Sopra Steria",
"identifier": "SopraSteria1"
},
"jobAdId": "ab6c865f-12e5-4ae9-ae03-07f3a7b3dcbc",
"function": {
"id": "information_technology",
"label": "Information Technology"
},
"industry": {
"id": "it_and_services",
"label": "Information Technology And Services"
},
"language": {
"code": "en",
"label": "English",
"labelNative": "English (US)"
},
"location": {
"city": "Montréal",
"hybrid": false,
"region": "QC",
"remote": false,
"address": "400 Avenue Sainte-Croix",
"country": "ca",
"latitude": "45.5089824",
"longitude": "-73.6694365",
"postalCode": "H4N 3K4",
"fullLocation": "Montréal, QC, Canada"
},
"refNumber": "REF15715H",
"department": {
"id": "5300845",
"label": "Cyber Security"
},
"visibility": "PUBLIC",
"customField": [
{
"fieldId": "632c5097a7443e41fb446e2d",
"valueId": "7f0efb98-26a4-4756-b8c9-71270963c53d",
"fieldLabel": "Brands",
"valueLabel": "CS Group"
},
{
"fieldId": "632c5097a7443e41fb446e2e",
"valueId": "5300845",
"fieldLabel": "Department",
"valueLabel": "Cyber Security"
},
{
"fieldId": "6419e10d65322a00cb96743b",
"valueId": "4435b201-b999-426f-a491-692fb88b64d7",
"fieldLabel": "Total Experience Expected",
"valueLabel": "6 to 10 years"
},
{
"fieldId": "6419e19b65322a00cb96743c",
"valueId": "922921b7-f2cd-4ced-a6b0-3e918869beb7",
"fieldLabel": "Type of Contract",
"valueLabel": "Permanent"
},
{
"fieldId": "6419e14b825d686b7de49aa3",
"valueId": "STANDA",
"fieldLabel": "Nature of Contract",
"valueLabel": "Standard"
},
{
"fieldId": "COUNTRY",
"valueId": "ca",
"fieldLabel": "Country/Region",
"valueLabel": "Canada"
}
],
"defaultJobAd": true,
"releasedDate": "2026-06-03T23:41:18.758Z",
"detail_errors": [],
"experienceLevel": {
"id": "executive",
"label": "Executive"
},
"typeOfEmployment": {
"id": "permanent",
"label": "Full-time"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/379c804ffdfea8a377612d3386690d216b4a40c1?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/d4c5a77b-05fa-44eb-a2a4-c5dbfe1c7376JSONGET https://api.bluedoor.sh/job-postings/v1/sources/f0cea485-00c0-49d1-9b16-9bb8a599716dJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/379c804ffdfea8a377612d3386690d216b4a40c1/eventsJSON