Product Expert of Psirt/cert - Munich, Deutschland - Antal International / Ohana GmbH

Antal International / Ohana GmbH

Geprüftes Unternehmen

Munich, Deutschland

vor 2 Wochen

Geschrieben von:

Lena Wagner

beBee Recruiter

Beschreibung

Research Profil Job Position
Presented by

Antal International / Ohánà GmbH

OVERVIEW
Antal Reference Number

AO-AO-PV-PMM-001

Position
Product Expert of PSIRT/Cert - Vulnerability Management (W, M, G)

Company Munich

Salary Level Very Good Salary Level - Budget per Year

Min. Practices Business Skills > 10 Jahre

Experience
Expert Skills of PSIRT/CERT

Expert Skills of Vulnerability Management

Communication, Documentation Skills

Part/Number of Job-Position 1

Age

Language only English Level min. C1

Education
Min. Master of Computer Science, Cyber-Security, or ideal PhD in a related field

Profiling

Client Backround

Our client is a driven by a commitment to operations, and services are used in more than 170 countries and regions, serving over one-third of the world's population with 197,000 employees worldwide.

The client is committed to develop the future information society and build a "Better Connected World".

The Munich Research Center (MRC) is responsible for advanced technology research, architecture design and strategic technical planning.

PSIRT is responsible for vulnerability management during the Group's deep dive into digital transformation and new business.

It builds an end-to-end (E2E) vulnerability governance and capability system and an open vulnerability management ecosystem, implements vulnerability management requirements under the company's diverse business structure to meet stringent external requirements, and ensures that product security capabilities can be translated into competitiveness.

Product Expert of PSIRT/Cert - Vulnerability Management

Allocation Munich

We are seeking an experienced and highly skilled Expert of PSIRT (Product Security Incident Response Team) and Cert (Computer Emergency Response Team) and Vulnerability Management to join our organization.

As an Expert of PSIRT and Cert and Vulnerability Management, you will be responsible for overseeing and managing the organization's response to product security incidents, coordinating with external CERTs, and implementing effective vulnerability management practices.

Key Responsibilities:

Product Security Incident Response:

Lead and manage the Product Security Incident Response Team (PSIRT) to ensure prompt and effective response to security incidents related to our products and services.
Develop and implement incident response procedures and playbooks to streamline the response process and minimize impact.
Investigate and assess the severity and impact of reported security vulnerabilities and incidents.
Coordinate with crossfunctional teams, including engineering, product management, legal, and communications, to resolve security incidents and mitigate risks.
Collaborate with external stakeholders, including CERTs, security researchers, and customers, to exchange information and ensure a coordinated response to incidents.

Cert Coordination:

Establish and maintain strong relationships with external CERTs, including national and international CERT organizations.
Serve as the primary point of contact for CERTs regarding security incidents, vulnerability disclosures, and information sharing.
Collaborate with CERTs to exchange actionable threat intelligence, vulnerability data, and mitigation strategies.
Ensure compliance with reporting requirements and guidelines set forth by CERTs and regulatory bodies.

Vulnerability Management:

Develop and maintain a comprehensive vulnerability management program, including vulnerability scanning, assessment, prioritization, and remediation.
Monitor and track emerging vulnerabilities and threats and provide timely alerts and advisories to internal teams.
Collaborate with internal stakeholders to ensure vulnerabilities are addressed in a timely manner through patching, mitigations, or other appropriate measures.
Conduct vulnerability assessments and penetration testing to identify weaknesses and recommend remediation actions.
Stay updated on the latest security trends, vulnerabilities, and industry best practices to continuously improve the vulnerability management program.

Documentation and Reporting:

Document and maintain accurate records of security incidents, vulnerability assessments, and mitigation activities.
Prepare and present reports to senior management, highlighting the status of security incidents, vulnerabilities, and the effectiveness of the vulnerability management program.
Provide recommendations for improving security controls, incident response procedures, and vulnerability management processes based on industry standards and best practices.

Qualifications:

English Language Level C1
Min. Master or PhD of Computer Science, Cyber-Security, or ideal PhD a related field

Extensive experience (X+ years) in managing product security incidents, CERT coordination, and vulnerability management in a large organization.

Strong