Application Guide

How to Apply for Product Cybersecurity Engineer

at May Mobility

🏢 About May Mobility

May Mobility is a leader in autonomous electric vehicle technology, focusing on safe, sustainable, and eco-friendly transportation. Their commitment to integrating cybersecurity from the ground up makes them a unique place for engineers passionate about both security and sustainability.

About This Role

As a Product Cybersecurity Engineer, you will embed security into every stage of product development, from requirements to release. Your work will directly impact the safety and trustworthiness of autonomous vehicles, ensuring they are resilient against cyber threats.

💡 A Day in the Life

A typical day might involve collaborating with hardware engineers to review a new sensor design for security flaws, then updating the SBOM after a third-party component change. You'll also participate in threat modeling sessions for upcoming features and document security requirements for the next release.

🎯 Who May Mobility Is Looking For

  • You have 1-3 years of hands-on experience in product cybersecurity, with a focus on embedded systems or automotive environments.
  • You are proficient in threat modeling (e.g., STRIDE, PASTA) and attack surface analysis, and have experience with SBOM tools like SPDX or CycloneDX.
  • You understand vehicle communication protocols (CAN, LIN, Ethernet) and security standards (UNECE WP.29, ISO/SAE 21434).
  • You are proactive in integrating security early in design decisions, including supply chain risk assessment.

📝 Tips for Applying to May Mobility

1

Tailor your resume to highlight specific experiences with TARA/HARA analyses and SBOM management, using concrete examples from past projects.

2

Mention any familiarity with autonomous vehicle systems or electric vehicle architectures, even if from academic projects or certifications.

3

Demonstrate knowledge of UNECE WP.29 and ISO/SAE 21434 by referencing how you've applied these standards in previous roles.

4

Include a portfolio or GitHub link showcasing security-related work, such as threat models or vulnerability assessments.

5

Write a cover letter that connects your passion for sustainable transportation with cybersecurity, showing you understand May Mobility's mission.

✉️ What to Emphasize in Your Cover Letter

['Emphasize your experience with threat modeling and security requirements definition in product development lifecycles.', 'Highlight your understanding of automotive-specific security challenges, such as CAN bus vulnerabilities or OTA update risks.', "Express enthusiasm for autonomous vehicle technology and May Mobility's focus on eco-friendly transportation.", 'Showcase your ability to collaborate with cross-functional teams (hardware, firmware, software) to embed security early.']

Generate Cover Letter →

🔍 Research Before Applying

To stand out, make sure you've researched:

  • Explore May Mobility's specific autonomous vehicle technology and their deployment history (e.g., where they operate).
  • Read about their approach to safety and cybersecurity, possibly from their blog or press releases.
  • Understand the current regulatory landscape for AVs in the US, especially state-level testing permits and federal guidelines.
  • Look into recent incidents or vulnerabilities in autonomous vehicles to discuss how you would prevent them.

💬 Prepare for These Interview Topics

Based on this role, you may be asked about:

1 Describe a time you conducted a TARA or HARA analysis; what were the key threats and how did you mitigate them?
2 How would you approach threat modeling for an autonomous vehicle's perception system?
3 Explain the importance of SBOMs and how you would manage them across a product's lifecycle.
4 What are the main security challenges in CAN bus communication, and how would you address them?
5 How do you stay updated on emerging automotive security standards and vulnerabilities?
Practice Interview Questions →

⚠️ Common Mistakes to Avoid

  • Applying without showing specific knowledge of automotive cybersecurity standards (UNECE WP.29, ISO 21434).
  • Focusing only on software security while ignoring hardware and supply chain risks, which are critical in this role.
  • Not mentioning any experience with embedded systems or vehicle networks, as these are core to the job.

📅 Application Timeline

This position is open until filled. However, we recommend applying as soon as possible as roles at mission-driven organizations tend to fill quickly.

Typical hiring timeline:

1

Application Review

1-2 weeks

2

Initial Screening

Phone call or written assessment

3

Interviews

1-2 rounds, usually virtual

Offer

Congratulations!

Ready to Apply?

Good luck with your application to May Mobility!