Principal Security Researcher

We, at Enterprise IT Security, are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs are responsible for driving the business, the TDs provide research, development, purchasing, manufacturing, and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction, and have global responsibility in group-wide functions such as IT, legal, compliance and security.

With Enterprise IT Security, you will be part of Group Digital & IT (Group Function). A global and diverse team of highly skilled professionals who work with passion, trust each other, and embrace change to stay ahead. Enterprise IT Security works in close collaboration with both Group Security function and security functions within the entirety of Volvo Group. Together we work to build a security posture for Volvo group that is best in class.

This is how you could make an impact

As a Principal Security Researcher, your main responsibilities will include:

• Leading advanced security research to identify, analyze, and mitigate emerging cyber threats, vulnerabilities, and attack vectors.
• Developing innovative and effective solutions to protect Volvo Groups products, services, and customers from cyber threats.
• Collaborating with cross-functional teams, including engineering, product management, and other security researchers, to integrate research findings into the company's products and services.
• Designing, implementing, and improving security tools and techniques to enhance threat detection and prevention capabilities.
• Publishing research findings, presenting at industry conferences, and engaging with the security community to share knowledge and best practices.
• Mentoring and providing guidance to junior security researchers, fostering a culture of continuous learning and improvement.
• Maintaining an up-to-date understanding of the threat landscape, industry trends, and advancements in security technologies.
• Participating in incident response activities as needed to support the company's security operations.

Requirements:

To be successful in this role, you should have:

• A Bachelor's or Master's degree in Computer Science, Information Security, or a related field, with at least 8 years of experience in security research or a similar role.
• In-depth knowledge of cyber threats, attack techniques, and security vulnerabilities.
• Expertise in reverse engineering, malware analysis, exploit development, or vulnerability research.
• Proficiency in one or more programming languages (e.g., C, C++, Python, Java, etc.).
• Familiarity with security tools, such as static and dynamic analysis tools, fuzzers, debuggers, and disassemblers.
• Strong analytical, problem-solving, and critical-thinking skills.
• Excellent written and verbal communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences.
• A track record of published security research or conference presentations is a plus.
• Relevant industry certifications, such as OSCP, OSCE, or CISSP, are desirable but not required.
• In addition, you work with a global mindset, thrive in complex environments, and feel comfortable with ambiguity and challenging the status quo.

Are we a good match?

If you always strive for something bigger and can’t wait to be a part of the greatest shift in the history of transport and infrastructure, this is your unique opportunity. We offer you autonomy and freedom in defining your agenda and a great challenge to build something new. While developing your strategies and plans, you will be welcomed in an environment where we support and help each other grow.

The location for the position is Gothenburg, Sweden.

Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.