General Motors Embedded Controls Security Diagnostic Engineer - ENG0032664 in Warren, Michigan

TITLE: Embedded Controls Security Diagnostic Engineer

BACKGROUND: Automotive ECUs (Electronic Control Unit) deploy industry standardized diagnostic services to aid development, manufacturing, and service debugging activities. Although these diagnostic services provide significant benefit to GM, they can also be used to abuse electronic systems. The Embedded Controls Security Diagnostic Engineer is responsible for minimizing the potential abuse of automotive diagnostic services that can result in a compromise to vehicle security.He or she will review current and future diagnostic functions for potential security impacts and develop strategies to mitigate identified security concerns.


  • Assess security impact to GMW3110 & ISO14229 diagnostic services
  • Create strategy and requirements to secure automotive diagnostic service modes
  • Identify and eliminate unnecessary diagnostic capabilities by removing those not required to support service, diagnosis, and prognosis mechanisms
  • Serve as the SME for ECU unlock strategies deployed by Product Cybersecurity
  • Document vulnerabilities, identify and prioritize threats, and define mitigation action plans
  • Determine diagnostic functions only required for manufacturing and develop a design and process to ensure they are disabled when vehicle leaves the assembly plant
  • Determine diagnostic functions only required for service and develop a design and process to ensure that these can only function when legitimately requested by service or an authorized repair shop
  • Develop enhanced rationality checks to ensure diagnostic requests are consistent with a service or manufacturing procedure
  • Ensure diagnostic functions are consistent with mandated right-to-repair requirements
  • Coordinate requirements development with other activities within the enterprise
  • Participate in security-related workgroups
  • Keep abreast of embedded security trends, technologies, and best practices, and determine applicability to the organization
  • Participate as needed with outside standards organizations

The policy of General Motors is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity/expression or veteran status. Additionally, General Motors is committed to being an Equal Employment Opportunity Employer and offers opportunities to all job seekers including individuals with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, email us at In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.


  • Bachelor’s degree in Systems Engineering, Electrical Engineering, Mechanical Engineering, Computer Science, Computer Engineering or equivalent
  • Knowledge of diagnostic services (e.g., GMW3110, SAE J1979, ISO 15031, and ISO 14229), tools, and methodologies for automotive control systems
  • Knowledge of the CAN serial data communication systems
  • Knowledge of microprocessor operation and programming
  • Basic knowledge of major automotive subsystems
  • Basic knowledge of automotive service and end-of-line test systems and procedures
  • Ability to make decisions and recommendations while taking into account appropriate tradeoffs between conflicting objectives
  • Ability to handle ambiguity and make decisions and recommendations with limited data
  • Ability to verbalize problem statements as well as suggested enhancements


  • Advanced degree in Systems Engineering, Electrical Engineering, Mechanical Engineering, Computer Science, Computer Engineering or equivalent
  • Experience with and/or knowledge of technologies used to secure embedded systems
  • Experience developing requirements for automotive electrical systems