Product Security Engineer – Vulnerability Reporting (m/w/d)

Rolls-Royce Group

Friedrichshafen, Germany
Vulnerability management experience
Regulatory framework knowledge (cyber resilience act)
Stakeholder communication with authorities
This role serves as the primary point of contact for vulnerability analysis, security assessments, and communication with authorities and customers within the Product Security Incident Response Team

Job Summary

  • This role serves as the primary point of contact for vulnerability analysis, security assessments, and communication with authorities and customers within the Product Security Incident Response Team.
  • The successful candidate will ensure products comply with the EU Cyber Resilience Act by identifying regulatory requirements and preparing mandatory reports for external stakeholders.
  • Rolls-Royce Power Systems offers a comprehensive benefits package including a company health insurance fund, fitness programs, and attractive pension schemes.

Matching Summary

This role serves as the primary point of contact for vulnerability analysis, security assessments, and communication with authorities and customers within the Product Security Incident Response Team.

Skills & Requirements

Must-have

  • Vulnerability management experience
  • Regulatory framework knowledge (Cyber Resilience Act)
  • Stakeholder communication with authorities

Nice-to-have

  • Experience in international corporate environments
  • Product development background
  • High level of self-reliance and accuracy

Key Requirements

  • University degree in Engineering, Cybersecurity, or Law
  • 2-5 years experience in vulnerability management
  • Fluency in German and English
  • Knowledge of NIS2, BSI-Gesetz, IEC 62443

Work Rights

Not specified

Tailored Resume

Cover Letter