Vulnerability Management Specialist

HARMAN’s engineers and designers are creative, purposeful and agile. As part of this team, you’ll combine your technical expertise with innovative ideas to help drive cutting-edge solutions in the car, enterprise and connected ecosystem. Every day, you will push the boundaries of creative design, and HARMAN is committed to providing you with the opportunities, innovative technologies and resources to build a successful career.

A Career at HARMAN

As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do everyday.

About the Role

We’re looking for a Vulnerability Management Specialist to join our Global Product Cybersecurity team. You will be cooperating with the Vulnerability Manager and collaborate closely with the CTI automation, pentesting team and IT security. The Vulnerability Management team identifies and prioritizes all threats and vulnerabilities in our Product environment and provides respective reports to key stakeholders. If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Harman lines of business, then we want to talk to you. The nature of this position is a technical security function, not a compliance function.

What You Will Do

• Closely collaborate with the Harman global Vulnerability Management (VM) team and ensure smooth operations.
• Drive analysis, rate, and confirm vulnerabilities reported by external researchers, as well as new technical vulnerabilities according to their business impact and prioritize remediation activities.
• Develop of the VM-related applications / scripts as well as provide Software Quality Assurance
• Drive peripheral application and infrastructure patching tasks on the vulnerability remediation process.
• Drive tasks and root cause analysis for incident response for critical vulnerability
• Mentor less experienced team members in tasks

What You Need

• Bachelor’s relevant technical degree; apprenticeship with minimum or 5+ years of practical experience in a cyber security role.
• 3-5+ years of working experience in technical cyber security related field in a corporate, military, or law enforcement environment.
• Experience in either IT, embedded systems, HW testing, threat intelligence or cyber security in general.
• Honest and professional, strong team influencer, able to proactively support team culture that fosters knowledge sharing, excellence, and collaboration.
• Able to work under pressure, participate in technical discussions, provide advisory in technical matters.
• Experiences in improving a vulnerability management process, incident response process handling and/or vulnerability-scanning concepts in OT/ICS, embedded or product environment.
• Knowledge of cyber security standards, risks, threats, prevention measures, and best practices.
• Hands-on experience with programming / scripting languages, e.g. Python, bash, ruby.
• Functional understanding of SW and/or HW.
• Proficiency in Cybersecurity controls, frameworks, terminology, and concepts.
• English fluent; German will be a plus.

What You Need

• Bachelor’s relevant technical degree; apprenticeship with minimum or 5+ years of practical experience in a cyber security role
• 3-5+ years in a technical cyber security position within corporate, military, or law enforcement.
• Skilled in IT, embedded systems, hardware testing, threat intelligence, or cyber security.
• Demonstrates integrity, strong influence in teamwork, promotes a knowledge-sharing and excellence-driven culture.
• Able to work under pressure, participate in technical discussions, provide advisory in technical matters.
• Experience in enhancing vulnerability management and incident response processes, especially in OT/ICS, embedded, or product contexts.
• Familiar with cyber security standards, risks, and preventative strategies.
• Proficient in programming/scripting (Python, bash, ruby), and understands software/hardware.
• Proficiency in Cybersecurity controls, frameworks, terminology, and concepts.
• English (C1-C2); German is beneficial.

What is Nice to Have

• Cybersecurity experience (preferably from IT/OT or IoT/automotive)
• Knowledge of cybersecurity standards and organizations (CC, FIPS, NIST)
• Risk management knowledge
• Active participation of conferences, consortiums, CTFs (capture the flag)
• Publications, Blogs or Repos of past Cybersecurity work
• Knowledge of CSIRT or PSIRT

What Makes You Eligible

• Be willing to travel up to 5% of the time, domestic and international travel.
• Be willing to work in an office in Europe (TBD)

What We Offer

• Work in international teams with the biggest worldwide automotive customer
• Attractive salary package
• Training on the job and extensive technical trainings
• Further career development opportunities
• A great package of additional benefits, such as:
             o Flexible working time
             o Medical subscription
             o Free parking spaces
             o Meal tickets
             o Employee discounts on our HARMAN products (JBL, AKG, HARMAN Kardon)
             o Bookster account
             o Gym subscription, and much more...

HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.