Vulnerability Management Specialist
RO Bucharest 5-7 Dimitrie Pompei blvd
HARMAN International
HARMAN International is a global leader in connected car technology, lifestyle audio innovations, design and analytics, cloud services and IoT solutions.HARMAN’s engineers and designers are creative, purposeful and agile. As part of this team, you’ll combine your technical expertise with innovative ideas to help drive cutting-edge solutions in the car, enterprise and connected ecosystem. Every day, you will push the boundaries of creative design, and HARMAN is committed to providing you with the opportunities, innovative technologies and resources to build a successful career.
A Career at HARMAN
As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do everyday.
About the Role
We’re looking for a Vulnerability Management Specialist to join our Global Product Cybersecurity team. You will be cooperating with the Vulnerability Manager and collaborate closely with the CTI automation, pentesting team and IT security. The Vulnerability Management team identifies and prioritizes all threats and vulnerabilities in our Product environment and provides respective reports to key stakeholders. If you are passionate about Product Security and want to develop solutions that will secure our enterprise across all Harman lines of business, then we want to talk to you. The nature of this position is a technical security function, not a compliance function.
What You Will Do
- Closely collaborate with the Harman global Vulnerability Management (VM) team and ensure smooth operations.
- Drive analysis, rate, and confirm vulnerabilities reported by external researchers, as well as new technical vulnerabilities according to their business impact and prioritize remediation activities.
- Develop of the VM-related applications / scripts as well as provide Software Quality Assurance
- Drive peripheral application and infrastructure patching tasks on the vulnerability remediation process.
- Drive tasks and root cause analysis for incident response for critical vulnerability
- Mentor less experienced team members in tasks
What You Need
- Bachelor’s relevant technical degree; apprenticeship with minimum or 5+ years of practical experience in a cyber security role.
- 3-5+ years of working experience in technical cyber security related field in a corporate, military, or law enforcement environment.
- Experience in either IT, embedded systems, HW testing, threat intelligence or cyber security in general.
- Honest and professional, strong team influencer, able to proactively support team culture that fosters knowledge sharing, excellence, and collaboration.
- Able to work under pressure, participate in technical discussions, provide advisory in technical matters.
- Experiences in improving a vulnerability management process, incident response process handling and/or vulnerability-scanning concepts in OT/ICS, embedded or product environment.
- Knowledge of cyber security standards, risks, threats, prevention measures, and best practices.
- Hands-on experience with programming / scripting languages, e.g. Python, bash, ruby.
- Functional understanding of SW and/or HW.
- Proficiency in Cybersecurity controls, frameworks, terminology, and concepts.
- English fluent; German will be a plus.
What You Need
- Bachelor’s relevant technical degree; apprenticeship with minimum or 5+ years of practical experience in a cyber security role
- 3-5+ years in a technical cyber security position within corporate, military, or law enforcement.
- Skilled in IT, embedded systems, hardware testing, threat intelligence, or cyber security.
- Demonstrates integrity, strong influence in teamwork, promotes a knowledge-sharing and excellence-driven culture.
- Able to work under pressure, participate in technical discussions, provide advisory in technical matters.
- Experience in enhancing vulnerability management and incident response processes, especially in OT/ICS, embedded, or product contexts.
- Familiar with cyber security standards, risks, and preventative strategies.
- Proficient in programming/scripting (Python, bash, ruby), and understands software/hardware.
- Proficiency in Cybersecurity controls, frameworks, terminology, and concepts.
- English (C1-C2); German is beneficial.
What is Nice to Have
- Cybersecurity experience (preferably from IT/OT or IoT/automotive)
- Knowledge of cybersecurity standards and organizations (CC, FIPS, NIST)
- Risk management knowledge
- Active participation of conferences, consortiums, CTFs (capture the flag)
- Publications, Blogs or Repos of past Cybersecurity work
- Knowledge of CSIRT or PSIRT
What Makes You Eligible
- Be willing to travel up to 5% of the time, domestic and international travel.
- Be willing to work in an office in Europe (TBD)
What We Offer
- Work in international teams with the biggest worldwide automotive customer
- Attractive salary package
- Training on the job and extensive technical trainings
- Further career development opportunities
- A great package of additional benefits, such as:
o Flexible working time
o Medical subscription
o Free parking spaces
o Meal tickets
o Employee discounts on our HARMAN products (JBL, AKG, HARMAN Kardon)
o Bookster account
o Gym subscription, and much more...
HARMAN is proud to be an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation Bash Compliance CSIRT ICS Incident response NIST Pentesting Product security PSIRT Python Risk management Ruby Scripting Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Career development Conferences Flex hours Flex vacation
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Cyber Security Specialist jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open SaaS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs