This role is based at our Phoenix, AZ HQ, and would require relocation to the Phoenix area.

You’re passionate about a zero-emissions future and want to build something special.  You want to own your space, but work with talented, like-minded people on important projects.  The pace doesn’t scare you; it excites you. Quality and integrity matter to you. 

Nikola is currently seeking a Lead Cyber Security Engineer to develop our Cyber Security team. This position requires an experienced professional with a proven track record of cyber security development achievements. This is a technical position which plays a pivotal role in shaping the overall cyber security posture for Nikola.

A successful candidate will be a proven thought leader on cyber security throughout within both corporate IT, application development, and manufacturing environments. This role oversees the implementation of the enterprise's security solutions through management of the organization's security controls. This role is expected to develop and implement a cyber security strategy to facilitate enterprise level growth at both corporate and manufacturing facilities.

You will lead the effort to correctly architect an environment that is secured by design.  Additionally, you will:

• Design and guide the implementation of Nikola’s cyber security roadmap, including: Operational Technologies, advanced threat prevention, SIEM, endpoint protection, big data platforms, threat hunting, network access, privileged access management, intrusion detection, network monitoring, system hardening, and others.
• Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise's existing procurement processes.
• Create and maintain the enterprise's security documents (policies, standards, baselines, guidelines, and procedures).
• Oversee the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with the enterprise's security documents.
• Respond to and, when appropriate, resolve or escalate security incidents.
• Continuously assess and improve the organization’s cyber security controls.
• Manage and conduct cyber security audits for compliance with established frameworks.
• Guide the organization in establishing policies, standards, and procedures which foster security built-in.
• Demonstrable proficiency with one or more programming languages (C/C++ etc.).
• Experience with pen testing tools and security attack vectors.
• Strong understanding of network concepts including TCP/IP protocol stack, HTTP and TLS, DDoS detection/prevention, Intrusion detection and prevention.

Success in this role requires someone with expert experience with tactical execution of cyber security strategies and defenses while also having experience developing a cyber security strategy based on frameworks such as NIST CSF, CIS Critical Security Controls, or PCI DSS.  Additionally, the role requires:

• Minimum 8+ years of overall experience working in Networking Application Security and Infrastructure Security.
• Bachelor’s, Master’s, or equivalent experience in Engineering, Computer Science, or related technical field.
• Experience with pen testing tools and security attack vectors.
• Strong understanding of network concepts including TCP/IP protocol stack, HTTP and TLS, DDoS detection/prevention, Intrusion detection and prevention

Professional Certifications:
Minimum Certifications in one or more areas of information security, risk management or cyber security (i.e. CISSP, CISM, CRISC, CIPP, or CBCP) is also required. 

Candidates must have current U.S. work authorization or be TN eligible from Mexico or Canada.  This position is not eligible for CPT or OPT.

How to apply (click here): http://app.jobvite.com/m?3FSHClwG