May Mobility Logo

May Mobility

Product Cybersecurity Engineer

Posted 3 Days Ago
Remote
Hiring Remotely in USA
100K-155K Annually
Junior
Remote
Hiring Remotely in USA
100K-155K Annually
Junior
Embed security across the product lifecycle for autonomous vehicles: perform threat modeling, TARA/HARA, SBOM/HBOM management, secure architecture and network hardening, support compliance (ISO/SAE 21434, UNECE WP.29, UL4600), assist vulnerability management and secure update strategies, and collaborate with hardware, firmware, and software teams to drive mitigations and audits.
The summary above was generated by AI

May Mobility is transforming cities through autonomous technology to create a safer, greener, more accessible world. Based in Ann Arbor, Michigan, May develops and deploys autonomous vehicles (AVs) powered by our innovative Multi-Policy Decision Making (MPDM) technology that literally reimagines the way AVs think.
Our vehicles do more than just drive themselves - they provide value to communities, bridge public transit gaps and move people where they need to go safely, easily and with a lot more fun. We’re building the world’s best autonomy system to reimagine transit by minimizing congestion, expanding access and encouraging better land use in order to foster more green, vibrant and livable spaces. Since our founding in 2017, we’ve given more than 500,000 autonomous rides to real people around the globe. And we’re just getting started. We’re hiring people who share our passion for building the future, today, solving real-world problems and seeing the impact of their work. Join us.

Job Summary

The Product Cybersecurity Engineer is responsible for ensuring security is embedded throughout the product development lifecycle—from architecture and code to deployment and operations. This role integrates security practices into development workflows, manages vulnerabilities in vehicle and autonomous systems, supports compliance with automotive cybersecurity standards, and serves as a cross-functional security expert bridging cybersecurity, hardware, and product engineering teams.

Essential Responsibilities

  • Integrate security practices — threat modeling, architecture reviews into product development workflows from requirements through release.
  • Provide early security input on hardware, firmware, and software design decisions, including third-party and supply chain risk considerations.
  • Write, review, and validate security requirements across hardware and software domains; enforce secure coding standards and perform security analysis on main compute systems.
  • Assist with maintaining Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) using dedicated SBOM tooling to ensure component visibility, vulnerability tracking, and supply chain transparency across products.
  • Apply security lenses during safety and functional assessments in collaboration with safety, systems, and software teams.
  • Assist in proactive vulnerability patching and support secure update strategies using product security tooling for threat modeling and risk profiling.
  • Conduct hazard and threat analyses (TARA/HARA) early in the architecture and development lifecycle.
  • Analyze and harden the security architecture of vehicle subsystems and autonomous stacks; define system- and product-level security requirements and ensure validation coverage.
  • Assist senior level engineers with Ethernet, in-vehicle networking, and cloud interface configuration, including port security and network segmentation.
  • Maintain working knowledge of R155/156, ISO 21434 and UL 4600; support internal audits, risk assessments, and compliance documentation.
  • Engage with Auto-ISAC to track emerging threats, attack vectors, and industry best practices.
  • Work across teams such as cybersecurity, hardware, and product engineering — providing architectural security design feedback.
  • Assist with fostering a security-first culture across the organization through integrated best practices and awareness programs.
  • Perform additional responsibilities as directed by your manager.

Skills and Abilities

Success in this role typically requires the following competencies:

  • Clear written communication and the ability to align stakeholders on security priorities before executing.
  • Excellent attention to detail and a rigorous, systematic approach to security analysis.
  • Ability to identify complex security problems across hardware, firmware, and software and devise optimal, innovative solutions that often cross organizational boundaries.

Qualifications and Experience

Candidates most successful in this role typically hold the following qualifications or comparable knowledge or experience:

Required

  • B.S. Degree in Computer Science, Computer Engineering, or an equivalent degree 
  • Minimum of [1-3] years of experience in a product cyber security or related role
  • Experience performing threat modeling and attack surface analysis 
  • Experience generating and managing Software Bills of Materials (SBOMs) using industry tooling, with working knowledge of SBOM formats such as SPDX and CycloneDX
  • Familiarity with vehicle communication networks and protocols across physical and application layers (CAN, LIN, Ethernet, DBCs), embedded systems interaction, and module security technologies.
  • Familiarity with security-relevant services in ISO 14229-1 (UDS)
  • Experience in TARA and HARA methodologies; experience applying UNECE WP.29, ISO/SAE 21434, and security standards.
  • Ability to clearly communicate findings and collaborate with engineering teams to drive timely mitigation and remediation.

Desirable

  • Experience in automotive product security at an OEM, Tier 1 supplier, or AV company.
  • Experience with autonomous vehicle systems and components.
  • Familiarity with AUTOSAR security modules, secure boot implementations, and penetration testing tools specific to automotive/embedded domains (e.g., CANalyzer, Wireshark, JTAG debugging).
  • Conduct hands-on penetration testing to identify, exploit, and report vulnerabilities across systems, applications, and devices. 

Physical Requirements

  • Standard office working conditions which includes but is not limited to:
  • Prolonged sitting
  • Prolonged standing
  • Prolonged computer use
  • Travel required? –  Minimal: 1%-10%

Benefits and Perks

  • Comprehensive healthcare suite including medical, dental, vision, life, and disability plans. Domestic partners who have been residing together at least one year are also eligible to participate. 
  • Health Savings and Flexible Spending Healthcare and Dependent Care Accounts available.
  • Rich retirement benefits, including an immediately vested employer safe harbor match.
  • Generous paid parental leave as well as a phased return to work. 
  • Flexible vacation policy in addition to paid company holidays.
  • Total Wellness Program providing numerous resources for overall wellbeing   
Don’t meet every single requirement? Studies have shown that women and/or people of color are less likely to apply to a job unless they meet every qualification. At May Mobility, we’re committed to building a diverse, inclusive, and authentic workforce, so if you’re excited about this role but your previous experience doesn’t align perfectly with every qualification, we encourage you to apply anyway! You may be the perfect candidate for this or another role at May.

Want to learn more about our culture & benefits? Check out our website!

May Mobility is an equal opportunity employer.  All applicants for employment will be considered without regard to race, color, religion, sex, national origin, age, disability, sexual orientation, gender identity or expression, veteran status, genetics or any other legally protected basis.   Below, you have the opportunity to share your preferred gender pronouns, gender, ethnicity, and veteran status with May Mobility to help us identify areas of improvement in our hiring and recruitment processes. Completion of these questions is entirely voluntary.  Any information you choose to provide will be kept confidential, and will not impact the hiring decision in any way. If you believe that you will need any type of accommodation, please let us know.

Note to Recruitment Agencies: May Mobility does not accept unsolicited agency resumes. Furthermore, May Mobility does not pay placement fees for candidates submitted by any agency other than its approved partners.

Salary Range
$100,000$155,000 USD

May Mobility uses automated tools to support — but not replace — human judgment in our recruiting process, to find out more please click here

Similar Jobs

2 Minutes Ago
In-Office or Remote
CA, USA
195K-343K Annually
Senior level
195K-343K Annually
Senior level
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
Lead architecture and technical strategy for AI-driven product quality systems using LLMs and agents. Build scalable evaluation frameworks, detect regressions, generate insights, and drive cross-functional adoption while mentoring engineers and defining standards for trustworthy AI.
Top Skills: AgentsAi InfrastructureEvaluation SystemsLlmsRetrieval Architectures
2 Minutes Ago
In-Office or Remote
38K-223K Annually
Mid level
38K-223K Annually
Mid level
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
Field-driven full-cycle sales role owning a territory: generate and qualify leads, run live demos, close deals across Squareproduct suite, build local partnerships and referrals, maintain CRM rigor, and consistently exceed quota through high-volume in-person activity and vertical expertise (restaurants, retail, services).
Top Skills: SalesforceSquare
2 Minutes Ago
In-Office or Remote
123K-223K Annually
Senior level
123K-223K Annually
Senior level
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
Lead and develop a field sales team in Dallas through in-market coaching, hands-on selling, and data-driven pipeline and forecast management. Drive hiring, onboarding, and scalable field sales motions, build a high-accountability culture, improve outbound productivity, and partner cross-functionally to expand market presence and revenue.

What you need to know about the Chicago Tech Scene

With vibrant neighborhoods, great food and more affordable housing than either coast, Chicago might be the most liveable major tech hub. It is the birthplace of modern commodities and futures trading, a national hub for logistics and commerce, and home to the American Medical Association and the American Bar Association. This diverse blend of industry influences has helped Chicago emerge as a major player in verticals like fintech, biotechnology, legal tech, e-commerce and logistics technology. It’s also a major hiring center for tech companies on both coasts.

Key Facts About Chicago Tech

  • Number of Tech Workers: 245,800; 5.2% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: McDonald’s, John Deere, Boeing, Morningstar
  • Key Industries: Artificial intelligence, biotechnology, fintech, software, logistics technology
  • Funding Landscape: $2.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Pritzker Group Venture Capital, Arch Venture Partners, MATH Venture Partners, Jump Capital, Hyde Park Venture Partners
  • Research Centers and Universities: Northwestern University, University of Chicago, University of Illinois Urbana-Champaign, Illinois Institute of Technology, Argonne National Laboratory, Fermi National Accelerator Laboratory

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account