Senior Cybersecurity & OTA Engineer

As the leading transit bus manufacturer in the United States, GILLIG buses play a critical role in the environmental and social initiatives in communities across our nation.  GILLIG is on the forefront in the transition to zero-emission vehicles and has an unmatched reputation in the industry for quality, reliability, durability, service, and support.  From initial design through final assembly, each GILLIG bus is designed and built in Livermore, CA. 

WHY GILLIG

• Leader in environmentally friendly mobility solutions including battery electric, hybrid electric, near-zero CNG and clean diesel transit buses
• Renowned for its inclusive team/family-oriented culture
• Stable, successful, and growing organization – a Bay Area business for over 132 years!
• Flexible schedules (*depending on project needs)
• Excellent compensation including company paid medical premiums, generous retirement plan and other comprehensive benefits

DEPARTMENT OVERVIEW

GILLIG Engineering is responsible for the development, customization, and configuration of GILLIG’s clean technology heavy-duty transit buses.  We are committed to developing the most reliable buses that connect communities, eliminate congestion, and contribute to a greener environment.  Our engineers are engaged in designing, analyzing, testing, launching, and problem-solving across a wide range of technical areas. 

Electrical & Electronic (E/E) Systems Engineering is responsible for designing, developing, and optimizing E/E systems and components including low & high voltage power distribution, CAN bus network topology & variation, powertrain/body component electrical system architecture and integration to ensure proper functionality, safety, durability, and performance. They collaborate with cross-functional teams to meet regulatory standards, trouble-shoot issues, and ensure cost-effective and efficient designs tailored to the needs of heavy-duty transit buses. 

ABOUT THE ROLE

We are looking for a Senior Engineer in the CTC team who will be responsible for the overall design, development, and integration of our on-vehicle cybersecurity and over-the-air (OTA) update systems for all future vehicles. You will have direct influence on vehicle electrical systems from concept through to manufacturing launch to field support.

You will be part of the team that develops the industry’s best-in-class zero emission bus. You will focus on item definitions, cybersecurity concepts, threat assessments, cybersecurity goals, component selection, component compliance, cybersecurity lifecycle management and OTA infrastructure. Assignments are broad in scope and highly complex that require outstanding creativity, superior initiative, good judgement, and leadership skills combined with the willingness to do hands-on engineering.

This is a hands-on, on-site role at our Loveland, CO facility (Colorado Technology Center) and reports to the E/E Systems Engineering Manager. The Colorado Technology Center (CTC) was created in early 2024 and is focused on developing the next generation ZEV powertrains and Advanced Engineering projects for the broader GILLIG enterprise.

TECHNICAL FOCUS

Vehicle Cybersecurity & Over-the-Air Updates

You will apply your skills & experience to provide highly customized, vehicle-based cybersecurity and over-the-air update systems through definition of on-vehicle assets (items), threats, cybersecurity goals, cybersecurity implementations and component selection. Additional consideration for legacy devices and advanced connectivity devices will also play a major factor as the GILLIG Transit Bus is both a heavy-duty industrial and automotive product. Experience with cybersecurity standards (ISO 21434) and functional safety (ISO 26262) is preferred. Experience in on-vehicle networking, OTA updates and penetration testing is a plus. 

IN THIS ROLE YOU WILL

• Conduct Threat Analysis and Risk Assessment (TARA) for vehicle E/E systems
• Define cybersecurity goals, requirements, and specifications for on-vehicle assets
• Develop and maintain the vehicle cybersecurity management system (CSMS) and ensure lifecycle compliance
• Design and implement OTA update architecture including secure boot, code signing, version management, rollback mechanisms and update orchestration
• Oversee cybersecurity validation and verification activities including penetration testing and vulnerability assessments
• Collaborate with E/E and software teams to integrate cybersecurity controls into the vehicle network architecture (CAN, Ethernet)
• Support functional safety analysis and ensure cybersecurity measures do not compromise safety
• Collaborate with suppliers to ensure third-party components and subsystems meet cybersecurity requirements and compliance
• Mentor and provide technical direction for junior engineers on cybersecurity and OTA best practices
• Guide company direction for on-vehicle cybersecurity goals
• Analyze and provide feedback to customer and industry requirements and standards

• Autonomy: Ability to work independently with review at critical points.
• Technically Minded: Apply industry practices and standards and provide input and advice to other staff members on cybersecurity practices. Exhibit advanced wide-ranging experience, using in-depth professional knowledge, acumen, concepts and company objectives to develop and resolve complex cybersecurity challenges.
• Time Management: Work productively with cross-functional teams to deliver projects on schedule and on budget.
• Communication: Collaborate and teach up, down and across the organization to help raise the skills and knowledge of the GILLIG team. Adapt style to differing audiences and adept at persuasion on complex subjects.
• Complexity: Assignments are broad in scope and highly complex that require outstanding creativity, superior initiative, good judgement, and leadership skills. Work on problems with diverse scope, where analysis of information requires evaluation of identifiable factors. Devise solutions based on limited information and precedent and adapt existing approaches to resolve issues. Use evaluation, judgment, and interpretation to select the right course of action.
• Quality & Standards: Cybersecurity documentation, threat models, and risk assessments are accurate and complete. Released designs meet all cybersecurity objectives, compliance requirements, & customer specifications.

• Bachelor of Science (BS) in Engineering, Computer Science, or Cybersecurity.
• Minimum 5 years of experience in cybersecurity engineering, preferably in automotive, commercial, or heavy-duty vehicle systems.
• Direct experience with:
• Threat analysis and risk assessment (TARA), cybersecurity concept development, and cybersecurity lifecycle management
• Vehicle network security for CAN bus and J1939 protocols
• OTA update systems design, deployment, and validation including secure boot, firmware signing, and delta update strategies
• Familiarity with:
• Functional safety standards (ISO 26262) and their interaction with cybersecurity requirements.
• Heavy-duty vehicle E/E architectures and connected vehicle ecosystems.
• Penetration testing tools and methodologies (e.g., Wireshark, CANoe, bus analyzers) for vehicle network security assessment.
• Standard problem-solving methodologies and tools such as: 8-D, Five Whys, & Fishbone diagrams, as well as cybersecurity incident response frameworks.
• SAE vehicle communication standards such as J1939, J1939-76 (security), and automotive Ethernet protocols.
• Industry and regulatory standards such as UN R155, UN R156, NIST Cybersecurity Framework, APTA, etc.

WORK ENVIRONMENT:

• Ability to lift 25 lbs.
• Prolonged periods of sitting/standing at a desk and working on a computer
• Regularly required to sit, stand, and walk and occasionally kneel or squat
• The ideal candidate must be able to complete all physical requirements of the job with or without a reasonable accommodation.
• Must be able to navigate manufacturing environment, comfortable around heavy machinery, tools, etc.
• Must be able to wear Personal Protective Equipment, (i.e. safety glasses, bump caps, hearing protection, etc.)
• 5% travel may be required
• Typical start time 8:00AM MT

$75,000 - $180,000/annual salary + premium benefits

Pay offered may vary depending on multiple individualized factors, including market location, job classification, job-related knowledge, skills, and experience. The total compensation package for this position may also include other elements dependent on the position offered. Details of participation in these benefit plans will be provided if a candidate receives an offer of employment.

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

GILLIG is committed to providing equal opportunities to all employees and applicants for employment. We are committed to creating an inclusive and diverse workplace that values and respects the unique talents, experiences, and perspectives of our employees and the people we serve. As an equal opportunity employer, we do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, pregnancy, gender identity or any other characteristic protected by law.

GILLIG is an equal employment opportunity and affirmative action employer.