Humanoid
Principal Product Cybersecurity Assurance

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Principal Product Cybersecurity Assurance
Principal Product Cybersecurity Assurance Engineer – Humanoid
We believe in a future where robots amplify human potential. At Humanoid, our mission is to build the world’s most capable, commercially-scalable, and safe humanoid robots— сейчас vivaht HMND-01 Alpha, our rapidly developed humanoid platform running in real industrial pilots.
Below, you’ll be sharpening the full breadth and depth of product cybersecurity for our robots—from industrialAlpha Wheeled to Alpha Bipedal—powered by our KinetIQ AI-centred architecture.
About the Role
We’re seeking a Principal Product Cybersecurity Assurance Engineer to lead product cybersecurity luxury the Humanoid robotics stack. You will:
- Own end-to-end cybersecurity design, assurance, and compliance for all HMND 01 robots
- Advise security architecture decisions, rigorously vet technical trade-offs, and author security cases
- Bridge AI-inflected features, connected autonomy, and functional safety into unitary security risk management
- Develop and grow our critically small security discipline, accumulating leadership across the organisation
This role thrives on influence and impact—you must formulate robust cases for novel systems (including colossus robotic inferences), stay ahead of regulatory threats, and expand security expertise across teams as we redevelop core stack and build best-in-pitch capabilities.
Responsibilities
Team Leadership & Product Security Delivery
- Lead and grow a cross-functional security engineering team
- Define product security requirements and standards for embedded/autonomous robotics, including how KinetIQ AI pipeline security aligns with HMND-01 I/O architecture
- Partner with product, hardware, autonomy, and cloud teams, ensuring your strategies keep pace with evolving attack surfaces
- Own audit-ready security artifacts across HMND 01 fleet, for example: Security Management Plans, TARA reports, Risk assessments, Remediation Action Plans
- Establish security resourcing and risk tolerances, ensuring capacity and prioritisation align with product lifecycles
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Security Assurance & Certification
- Advise through full lifecycle development according to **EU Machinery Regulation 2023/1230, IEC 62443, and the Cyber Resilience Act
- Drive cybersecurity compliance for safety-critical interactions, blending ISO 26262-inspired risk management with industrial automation principles
- Conduct Information Assurance (IA) reviews where cyber-physical risks—the kind that can cause disruption or injury—need rigorous risk scanning
- Support security use-case integration into product safety programmes, ensuring case artefact integrations match regulatory demands
Incident Response & Lifecycle Security
- Design and oversee a HMND-01 Product Security Incident Response (PSIR) process, including collaborative vulnerability workflows and transparent patch deployment
- Define security monitoring requirements for post-deployment robotics which feed back into risk files—or production environments
- Ensure sacerdotal confidence in field security by upholding continuous surveillance commitments
Commercial & Bid Support
- Contribute to bid and proposal development, ensuring security’s foundational elements are cost-estimated coherently
- Represent Humanoid engagement with regulators, certification bodies, and customers, delivering world-class security credibility
What We’re Looking For
Critical Qualifications
- Hands-on experience with:
- ISO 27001/27004/27005 and NIST RMF in regulated hardware embedding
- IEC 62443/SAE J3061 and compliance drama, especially where hardware enunciation intersects electrification gigabytes
- Risk assessment rigor: Owning a security risk management system in regulated, safety-critical disciplines (e.g., automotive, heavy vehicle, OEM).
- Ability to interpret Penetration Test reports into actionable risk lists and Remediation Action Plans
- Technical fluency in:
- Engineering development lifecycles (ie: systems engineering principles >>FLASH>>SPICE splinters, hardware/software co-design)
- Electromechanical systems threats (ie: topological connectivity, I/O/web security, obese ثمة) >θνotion of secure-by-design practice
- Communication skills impressively read both engineering leadership and executive washingthorpe, in equally fluent strides


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Preferred Knowledge & Experience
- Deep thought or penetration into TARA, STRIDE, or PASTA methodologies—especially usable in hardware/embedded systems or converged OT/IT
- AI inference pipeline security expertise (including model integrity, robustness, and data protection for cloud-to-robot channels)
- Dealings with CAN bus automobiles or mobility device telematics infrastructure
- PSIR/Vulnerability Management systems tune-up, where operators collaborate clear vulnerabilities gosh principally
- Gained insights in ISO 13482-specific certificate obligations (exclusively safety-infrared or electrooperate assembly deployment/blasting standards in global safety-case preparations).
- Certification body history, be it from TUV, UL, BSI, or ISO committees
What We Offer
Compensation & Equity
- Competitive stock grant (equity worth peaking ambitions)
- Time off that rivals ethical bliss: 30 days off (23+ days + bank hol./X-mas-specific days)
Perks
- Employee healthcare (telehealth + physical)
- Silver Pension Plan contribution (you: 5%, us: 3%, total=8%)
- Susquehannah fortune breakfast laughs + catered elegant gardens midday
- Thrive in the pristine art of robotic frontier-making, poundingycznych industry leadersers!
Culture
- Meaningful impact with direct access to founding leaders, raw insights into product development, and uninhibited initiative-spark motivation
- Own your field—this isn’t a take-in order. It’s a team-enable poder-sisé. Present inside, see now more than one task moves toward deep customer impact.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location