Introduction: A Career at HARMAN Automotive
We’re a global, multi-disciplinary team that’s putting the innovative power of technology to work and transforming tomorrow. At HARMAN Automotive, we give you the keys to fast-track your career.
Engineer audio systems and integrated technology platforms that augment the driving experience
Combine ingenuity, in-depth research, and a spirit of collaboration with design and engineering excellence
Advance in-vehicle infotainment, safety, efficiency, and enjoyment
About the Role
We are seeking a Security Engineer to join our Global KMS team, contributing to the development and operation of foundational security services across our platform landscape.
In this role, you will help design, maintain, and extend security infrastructure & services that underpin secure device provisioning, lifecycle management, and SOC‑integrated Root of Trust (RoT) capabilities. Your work will directly support Trusted Execution Environments (TEEs) and the trusted elements of the platform, ensuring robust, scalable, and secure manufacturing and deployment processes.
This position requires close collaboration across engineering, manufacturing, and partner ecosystems, combining strong technical expertise with a structured, operational mindset.
What You Will Do
Actively collaborate with product engineering, IT, and manufacturing teams to ensure security is embedded as a proactive and integral part of the product development lifecycle
Design, develop, deploy, and operate security infrastructure services, including: Key management systems, Manufacturing provisioning services, Certificate authorities and code‑signing infrastructure
Define and implement APIs, protocols, and services for secure enumeration, configuration, and management of platform assets
Develop and maintain policies, procedures, and controls for cryptographic key generation, handling, lifecycle management, and access governance
Interface with manufacturing partners to support, troubleshoot, and debug security provisioning activities
Partner with software development teams to enable hosting platforms, tooling, SDKs, and integration components required for internal and external consumers
Own the day‑to‑day operation, reliability, and continuous improvement of security infrastructure services
What You Need to Be Successful
Bachelor’s or Master’s degree in Computer Science, Engineering, or Mathematics
5+ years of industry experience in a software development or security engineering role
Solid working knowledge of Linux environments, including command‑line tools
Proficiency in C/C++, Java, and Python
Practical experience with HTTP(S) services, including reverse proxies (Apache or Nginx), VPNs, and SSL/TLS configuration
Foundational experience with Hardware Security Modules (HSMs), like: PKCS#11 (Cryptoki) interface usage, Code‑signing services, Secure payload decryption, certificate signing, and device identity generation
Ability to understand complex systems, particularly in the context of vehicle architectures and manufacturing workflows
Strong understanding of security concepts such as: Secure key generation and delivery, Access control mechanisms, token‑based authorization, and Multi‑party authorization (e.g., n‑of‑m schemes)
Working knowledge of cryptographic primitives and secure communication protocols
Clear and effective communication skills in English
Strong collaboration mindset, openness in communication, resilience, and a sense of ownership
Bonus Points if You Have
Automotive cybersecurity experience, ideally within a Tier‑1 supplier or OEM environment
Hands‑on operational experience with:
HSM deployment, maintenance, backup, and recovery
Code‑signing infrastructure and access control systems
Web services deployment and CI/CD pipelines
Experience with containerized and cloud‑native environments (Docker, Kubernetes, ECS)
Familiarity with CloudHSM technologies
Experience with Utimaco HSMs, including firmware configuration or modification
Logging, monitoring, and observability experience (rsyslog, ELK stack, Logstash)
Linux system hardening and access control (SELinux, AppArmor, SMACK, PAM, SSH, FIDO/U2F)
Key‑provisioning experience for:
AUTOSAR (SHE)
Trusted Execution Environments (e.g., Trustonic / Kinibi)
Practical experience with:
Microsoft SignTool
Android APK/APEX signing processes
What Makes You Eligible
Be willing to travel up to 10%, domestic and international travel
Ability to work from an office in Queretaro, 3+ days per week (hybrid)
Successfully complete a background investigation and drug screen as a condition of employment
What We Offer
Access to employee discounts on world-class Harman and Samsung products (JBL, HARMAN Kardon, AKG, etc.)
Extensive training opportunities through our own HARMAN University-
Competitive wellness benefits.
“Be Brilliant” employee recognition and rewards program.
An inclusive and diverse work environment that fosters and encourages professional and personal development.
#LI-KV2