YOUR RESPONSIBILITIES: 1. From the perspective of threat analysis, analyzing and assessing architectures (ECU, E/E) concepts (Threat Analysis and Risk Assessment) 2. Generate GAP analysis based on ISO standards (ISO27001, ISO21434, TISAX) 3. Witnessing of Automate penetration and other security testing 4. Conducting technical discussions and explanations with clients 5. All-round insight into the daily challenges in CSMS/SUMS/ISMS faced by domestic and foreign clients 6. Establishing and maintaining good relationships with key partners
YOUR PROFILE: 1. Degree in Information Systems, Management Information Systems or similar (electrical engineering, mechatronics, mathematics, physics) 2. More than 3 years of professional experience in the area of ISO 21434 or ISO27001 or similar fields 3. In-depth knowledge of application development processes and at least one programing or scripting language (e.g., Java, Scala, C#, Ruby, Perl, Python, PowerShell) 4. Enough practical experience in PTES, OWASP or similar testing frameworks 5. In-depth knowledge and interest in cybersecurity, threat analysis and risk management methods 6. Fluent in English
CONSIDERED AS AN ASSET: 1. Several years of professional experience in the automotive industry and thereby knowledge of technologies for securing the vehicle (encryption, IDS/ IPS, etc.) 2. CISSP, CISA, CRISK, CISM, CEH, OSCP or equivalent information security certifications 3. Knowledge of ISO/IEC 27001, SAE J3061, ISO 21434, ISO 26262, GDPR, PCI, HIPPA Heavens 4. Understanding CVSS or other methods for threat assessment and risk analysis 5. High analytical and conceptual skills as well as good communication and collaborative skills
