Staff Software Engineer on Vulnerability Management team at Salesforce, driving security tooling strategy and automation for detecting and remediating vulnerabilities. Collaborate with cross - functional teams while providing mentorship and delivering high - quality engineering solutions.
About the role
- Information Security Risk Management Specialist managing security risks across the Liebherr group. Supporting risk management and governance in information security with reporting to executive levels.
Responsibilities
- supports the implementation and continuous operation of our Information Security Risk Management Product
- Responsible for identifying, documenting, assessing, and tracking information security risks across the Liebherr group of companies
- Deliver insights through executive-level dashboards and reports
- Maintain and update the risk registers, tracking ownership, mitigation plans, residual risk, and status
- Drive risk management data completeness, accuracy, and traceability of risk decisions
- Collaborate with IT and business representatives, and technology experts to capture and validate risk information
- Conduct qualitative and or quantitative risk assessments for Liebherr companies and from reported security issues
- Track mitigation and treatment plans, monitor implementation progress, and flag delays or unresolved risks
- Develop and maintain security risk management dashboards and reports using business intelligence tools
- Track and report key risk indicators (KRIs), key performance indicators (KPIs), and risk treatment effectiveness
- Contribute to process improvement initiatives for risk assessment and treatment workflows
Requirements
- Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related field
- 3+ years of working experience in information security, IT security, risk management or related roles
- Certifications such as CISSP, CISM, CRISC are a plus
- Understanding of NIST SP 800-39, NIST CSF, and ISO/IEC 27005 risk management concepts
- Experience in regulated industries (e.g., manufacturing, defense)
- Experience with creating and maintaining risk registers, reporting tools, and producing risk management risk indicators, metrics and reports
- Demonstrated ability to manage stakeholders across IT, OT, engineering, and business management in complex environments
- Good analytical and communication skills to explain risk findings to both technical and non-technical stakeholders
- Fluency in English (written and spoken) is a must; skills in German would be an advantage.
Benefits
- Competitive compensation and benefits package that recognizes your expertise
- Flexible and hybrid working model
- Creative freedom and responsibility to shape processes and solutions in our global transformation
- Continuous learning and development with tailored training and certification opportunities
- Meal vouchers
- Life and accident insurance
- Option to include a premium private health insurance package as part of the flexible remuneration
- A safe, stable and international workplace within a trusted family business that invests in people
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Data Center Security Officer responsible for conducting patrols and controlling access. Ensuring security and safety in data center facilities while monitoring surveillance and reporting issues.
Senior Security Auditor managing audit program operations for global security audits at NTT DATA. Focusing on coordinating, executing audits, producing reports and tracking remediation.
Security Architect in Transactions domain ensuring cybersecurity for Payments and Financial markets. Collaborating with teams to enhance compliance and security practices.
Modern Infrastructure and Security Architect at MUFG responsible for directing cyber security initiatives. Collaborating with engineers to enhance security features and tools across the organization.
Senior Federal Technical Program Manager driving execution of federal cloud operations. Facilitating engagements between HPE's CSP and MSP teams while ensuring compliance and operational efficiency.
Cloud Cybersecurity Engineer supporting multi - cloud environments for critical missions in alignment with the U.S. Air Force. Roles include overseeing security authorizations and collaborating with government teams.
Program Security Manager overseeing security and compliance for mission applications in the US. Managing security programs and leading facility operations at Aurora and Philadelphia locations.
Information System Security Manager providing cybersecurity and RMF support for DoD systems and applications. Collaborating with military, government, and contractor personnel to ensure national security and systems compliance.
AI Security Engineer focusing on identifying and mitigating AI vulnerabilities. Involves research, development, and implementation of adversarial machine learning algorithms.