Our client is a driven by a commitment to operations, and services are used in more than 170 countries and regions, serving over one-third of the world's population with 197,000 employees worldwide.

 

The client is committed to develop the future information society and build a “Better Connected World.”

 

The Munich Research Center (MRC) is responsible for advanced technology research, architecture design and strategic technical planning.

 

PSIRT is responsible for vulnerability management during the Group's deep dive into digital transformation and new business.

 

It builds an end-to-end (E2E) vulnerability governance and capability system and an open vulnerability management ecosystem, implements vulnerability management requirements under the company's diverse business structure to meet stringent external requirements, and ensures that product security capabilities can be translated into competitiveness.

 

Sen./Chief Security Emergency Response Expert  - Vulnerability Management

 

Allocation Munich

 

Candidate Profil/Job Description

 

As a Senior/Chief Security Emergency Response Expert, you will play a pivotal role in the Security Emergency Response Center. Your Responsibilities will includes.

Strategic Leadership:

Be the driving force behind the business planning and architecture design of the Security Emergency Response Center.

This entails staying at the forefront of industry trends, applying advanced management concepts to practical business operations, and establishing a collaborative security emergency response mechanism across diverse domains.

Architecture Development:

Ensure the continuous evolution of the emergency response architecture, incorporating the latest advancements in cybersecurity.

Develop and implement comprehensive cyber security emergency plans within the established business architecture.

Threat Information Center:

Lead the strategic design of the threat information center. Devise and execute plans for deploying critical threat management technologies, overseeing information collection, analysis, and platform architecture design.

Stay abreast of technical developments and research trends in related fields while managing and enhancing threat information management capabilities.

Regulatory Compliance and Industry Standards:

Maintain ongoing alignment with industry standards and regulatory requirements.

Foster collaborative relationships with academia and industry stakeholders to create a robust ecosystem.

Implement innovative architecture designs to instill customer trust and uphold a competitive edge in security.

Requirements

To excel in this role, you should possess the following qualifications:

• Educational Background:

A master’s or PhD degree in cyber security, information security, computer applications, or related fields is preferred.

• Professional Experience:

A minimum of 5 years of firsthand experience in vulnerability management, security incident response, or closely related domains is essential.

Applicants must have outstanding technical contributions or professional achievements and be familiar with the software SDL process.

• Industry Involvement:

Demonstrated involvement in key positions or roles within vulnerability-related industry and standards organizations.

This includes participation in groups like OASIS's CSAF workgroup, ISO/IEC SC 27, FIRST, Trusted Introducer, APCERT, and Open Wall.

Additionally, experience with key special interest groups (SIGs), open-source communities (e.g., Linux, Apache, K8S, Docker), and industry alliances (e.g., OWASP and CSA) is highly desirable.

• Language Proficiency:

Fluency in written and spoken Business English is mandatory.

How to Apply

If you are enthusiastic about shaping the future of the Munich Research Center, thrive on technical innovation, and seek to be part of a multicultural team in a dynamic growth environment, we invite you to reach out to us.

To apply, please submit your application along with your CV, including a cover letter and any relevant reference letters, in English.

Join us in our commitment to building a secure and innovative future in the realm of cybersecurity.