网络安全工程师

招聘人数：1 人 性别要求：不限性别 objective of this job is to ensure the adequate cyber security protection of Vaillant products, as well as protection of customers from cyberattacks in cooperation with group cyber security manager, in the Industrial business unit.
Follow up product-related cyber security：Follow up of the implemented product-related Cyber Security processes in requirement definition, qualification, approval, monitoring and training.
Align standards with group functions：Proceeding and adaption of CS Vaillant standards according to norm IEC62443 and integrate Chinese standards accordingly. Formulation of CS demands and requirements for all Industrial areas in means of quality- and requirement specifications.
Requirement definition：Responsible for the adequate classification of the products’ CS risk potential (Threat Analysis) as well as for deriving corresponding CS measures.
Definition of adequate risk levels for products：Operative specification of implemented CS measures during the product life cycle to ensure qualification and approval. Tracking of CS related testing activities and derivation of adequate counter measures in case of weak points revealed. Support of CS product certifications.
Assurance of CS product conformity：Collaborate by the implementation of a CS document management system and the publication of ongoing activities and current CS incidents in coordination with the product safety process. Definition and control of the CS document management：Identification of possible weak points during operational use of products as well as management and approval of CS counter measures. Report and align with group CS management.CS monitoring for products：Track and monitor cyber events for connected products in the market. Evaluate CS events and manage actions in alignment with group incident response process.
Education /Professional Skills:University degree in informatics or comparable qualification. Three years of job experience in ICT (Information and Communications Technology), profound knowledge in the IT Security / Cybersecurity sector, ideally practical experience with norms IEC62443, ISO27001, Threat & Risk Modeling / Analysis, independent working, assertiveness, high conceptual and analytical skills. Team spirit and excellent communication. Business fluent in English.