Product Cyber Security Expert (m/f/d)
at Sonova
Hannover, Niedersachsen, Germany -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 21 Jan, 2025 | Not Specified | 21 Oct, 2024 | 5 year(s) or above | Good communication skills | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
Who we are
You enjoy creating and innovating. You never stop striving for better. You take responsibility and you get results. You love being part of a team. Above all, you want your work to matter: Welcome to our world! At Sonova we create sense by bringing sound to life. Our innovative hearing solutions help millions of people enjoy life’s unforgettable moments.
We offer exceptional career opportunities through market-leading brands from consumer to medical, and a culture where you can quickly belong and perform at your best.
If you want the freedom to explore, opportunities to grow, and make positive change on people lives through your work, this is the place for you.
Join Sonova. Create sense.
Hannover, Germany
Product Cyber Security Expert (m/f/d)
155310
Are you passionate about security engineering and cybersecurity risk management? Do you feel drive when you think about challenges of an efficient “Secure Software Development Lifecycle (SSDLC)”, “shifting security left” and security automation? Is finding and exploiting vulnerabilities in all sorts of software and IoT devices almost like a hobby for you? Then this is a great opportunity for you to join our R&D development team and collaborate side-by-side with software developers, architects, project- and product managers to create secure products and solutions for Consumer Audio. Your main responsibility is to minimize data privacy and security risks of our mobile apps, cloud services and audio products through the entire product lifecycle. In this responsible position you will collaborate across business units with other departments such as corporate Cyber Security Center of Excellence, IT, legal and quality management.
Responsibilities:
- Identify and address cybersecurity and data privacy risks through the entire product lifecycle
- Conduct privacy impact assessments and threat modelling for products and services that we develop for our customers
- Ensure privacy and security principles are incorporated by design into our products and services
- Define, execute and establish security and data privacy verification activities such as development guidelines, reviews, SCA, SAST, DAST and penetration testing
- Perform and support vulnerability management for our products and services
- Support creation of privacy and security documentation including required regulatory evidence
- Contribute to security automation and development of DevSecOps practices
- Conduct security risk assessments, identify security risks, develop and propose appropriate remediation and mitigation options
- Evolve our privacy and security processes, methods and tools used for R&D product development and post-market monitoring
- Contribute into the development and execution of the corporate information security program
- Act as an ambassador of information security and risk matters; promote cyber security risk awareness across business functions
- Stay up-to-date on the latest cyber security trends, threats, risks and regulations
REQUIREMENT SUMMARY
Min:5.0Max:10.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Hannover, Germany
