Vulnerability Management Expert

A Career at HARMAN
As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do every day.

About the Role

We’re looking for a Vulnerability Management Expert to join our Global Product Cybersecurity team. You will be cooperating with the Vulnerability Manager and collaborate closely with the CTI automation, pentesting team and IT security. The Vulnerability Management team identifies and prioritizes all threats and vulnerabilities in our Product environment and provides respective reports to key stakeholders. If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Harman lines of business, then we want to talk to you.

What You Will Do

• Closely collaborate with the Harman global Vulnerability Management (VM) team and ensure smooth operations
• Drive and lead the analysis, rate, and confirm vulnerabilities reported by external researchers, as well as new technical vulnerabilities according to their business impact and prioritize remediation activities
• Lead the Development of VM-related applications / scripts as well as provide Software Quality Assurance
• Lead peripheral application and infrastructure patching tasks on the vulnerability remediation process
• Lead tasks and root cause analysis for incident response for critical vulnerability
• Mentor less experienced team members in growth and support the vulnerability manager

What You Need

• BA/BS or MS Degree in a relevant field or 3-6+ years of industry experience in a cybersecurity role
• SANS GIAC Enterprise Vulnerability Assessor Certification, Penetration Tester, Web Application Penetration Tester, Exploit Researcher and Advanced Penetration Tester
• 3-6+ years in a technical cybersecurity position within corporate, military, or law enforcement
• Experience in IT, embedded systems, hardware testing, threat intelligence, or cybersecurity
• Experiences in improving a vulnerability management process, incident response process handling and/or vulnerability-scanning concepts in OT/ICS, embedded or product environment
• Excellent knowledge of cybersecurity standards, risks, threats, prevention measures, and best practices
• Proficient in programming/scripting languages like Python, Bash, Ruby
• Understanding of software/hardware and cybersecurity controls, frameworks, and terminology
• Capable of providing specialized guidance and managing tasks autonomously
• An honest professional with significant influence on team dynamics, promoting a culture of knowledge sharing and collaboration
• English fluent

What is Nice to Have

• Cybersecurity experience (preferably from IT/OT and IoT/Automotive)
• GIAC of equivalent certification
• Knowledge of cybersecurity standards and organizations (CC, FIPS, NIST)
• Active participation of conferences, consortiums, CTFs (capture the flag)
• Publications, Blogs or Repos of past Cybersecurity work
• Knowledge of CSIRT or PSIRT
• Spoken German

What Makes You Eligible

• Be willing to travel up to 5% of the time, domestic and international travel
• Be willing to work in an office in Europe (TBD)

What We Offer

• Work in international teams with the biggest worldwide automotive customer
• Attractive salary package
• Training on the job and extensive technical trainings
• Further career development opportunities
• A great package of additional benefits, such as:
  o Flexible working time
  o Medical subscription
  o Free parking spaces
  o Meal tickets
  o Employee discounts on our HARMAN products (JBL, AKG, HARMAN Kardon)
  o Bookster account
  o Gym subscription, and much more...

HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.