First for a reason First Student is the largest school transportation provider in North America with more than a century of experience providing safe and reliable transportation. We work with 1,250 school districts in 39 states and 8 Canadian provinces carrying approximately five million students in 21,000 schools daily. Job Overview: You will be responsible for identifying, assessing, and mitigating cyber risks associated with our EV ecosystem. You will work closely with cross-functional teams, including IT, engineering, and cybersecurity, to develop and implement robust cybersecurity measures to safeguard our charging infrastructure, software, remote connectivity, and EVs. Your role will be pivotal in ensuring the secure adoption and operation of electric vehicles within our organization. Key Responsibilities: 1. Cybersecurity Monitoring and Incident Response: * Monitor EV software, charging systems, and related infrastructure for security incidents and anomalies. * Rapidly respond to and investigate security incidents, coordinating with relevant teams to resolve issues. 2. Security Assessment and Vulnerability Management: * Coordinate all cyber activities under the guidance of the InfoSec team. * Conduct regular security assessments, penetration tests, and vulnerability scans on EV software, chargers, remote connectivity solutions, and associated systems. * Collaborate with vendors and internal teams to remediate identified vulnerabilities. * Validate cybersecurity compliance on vendor proposals (RFI / RFP) duties? 3. Security Policy and Compliance: * Develop and enforce cybersecurity policies and best practices specific to electric vehicle technology. * Ensure compliance with industry standards and regulations related to electric vehicle cybersecurity. 4. Security Awareness and Training: * Educate employees and relevant stakeholders about cybersecurity best practices, threats, and mitigation strategies. 5. Incident Documentation and Reporting: * Maintain detailed records of security incidents, investigations, and resolutions. * Generate regular reports for management and regulatory authorities as needed. 6. Security Architecture and Planning: * Collaborate with IT and engineering teams to design and implement secure architecture for EV software and charging systems. * Participate in the planning and deployment of security enhancements. 7. Threat Intelligence Analysis: * Stay up-to-date with the latest cybersecurity threats and vulnerabilities specific to electric vehicles and chargers. * Use threat intelligence to inform security strategies and preventive measures. Qualifications: * Bachelor's degree in Information Security, Computer Science, or a related field (Master's degree preferred). * Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Industrial Cyber Security Professional Certification (GICSP), or equivalent certifications. * Proven experience in cybersecurity, preferably with a focus on electric vehicle technology or industrial control systems. * Strong knowledge of cybersecurity frameworks, standards, and best practices (e.g., NIST Cybersecurity Framework, ISO 27001). Cybersecurity certifications (SANS Institute, DEKRA, etc) preferred. * Familiarity with electric vehicle software, charging infrastructure, and related technologies. * Proficiency in cybersecurity tools and technologies, such as intrusion detection systems, firewall management, and vulnerability assessment tools. * Excellent analytical and problem-solving skills. * Effective communication and collaboration abilities. * Ability to work in a fast-paced and dynamic environment. In the state of Washington, all technician and driving positions, including but not limited to van drivers and any other position requiring employees to drive a company-owned vehicle, are considered safety-sensitive and are there