Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Bietigheim-Bissingen
- Working Model
- Hybrid, Onsite
Job Summary
In this position, you will conduct cyber-security risk analyses, advise development teams on security requirements, and organize external penetration tests for hardware, software, and cloud products.
Your role in the team
- Responsibility, documentation, and review of cyber security requirements, as well as conducting and documenting cyber security risk analyses (Threat Modeling) for all hardware, software, and cloud products.
- Derivation, prioritization, and tracking of cybersecurity measures and findings.
- Planning, management, and evaluation of external penetration tests.
- Consulting on all cybersecurity topics for hardware, software, and cloud development teams across all development phases.
- Active participation in refinements and design reviews with a clear focus on cyber security.
- Ensuring the implementation of relevant requirements from data protection law, Cyber Resilience Act, EU Data Act, and HIPAA.
This text has been machine translated. Show original
Our expectations of you
Education
- Successfully completed university degree (e.g., Computer Science or IT Security) or comparable qualification.
Qualifications
- Knowledge of the implementation of the GDPR and the Cyber Resilience Act.
- Experience in planning, executing, and evaluating penetration tests.
- Ability to communicate security risks clearly to engineering and management.
- Structured, documentation-oriented, and audit-proof working method.
- Very good knowledge of German and English.
Experience
- Several years of experience in cyber security for complex embedded, software, and cloud systems.
- Practical experience in Threat Modeling and Risk Analysis (e.g., STRIDE, attack trees).
- Experience with regulatory requirements for Medical Devices (MDR, FDA, IEC 81001-5-1).
- Experience with HIPAA compliance for cloud-based products in the US market.
- Experience in collaborating with interdisciplinary teams.
This text has been machine translated. Show original
What we offer
- Partial remote work possible.
- Attractive, modern, and highly collegial working environment.
- Flexible working time models.
- Attractive sports and leisure facilities (e.g., in-house fitness center and company-owned holiday apartments in popular recreational areas).
- Company bike through BusinessBike at discounted rates.
- Company pension scheme.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
Dürr Ag
The Dürr Group is a leading global machinery and plant manufacturer with particular expertise in automation and digitalization/Industry 4.0. Its products, systems, and services enable highly efficient manufacturing processes in various industries. The Dürr Group supplies industries such as the automotive industry, machine engineering, and the chemical, pharmaceutical, and wood processing industries.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Engineering Industry
Product Cyber Security Expert
- Location
- Bietigheim-Bissingen
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
