Cybersecurity Specialist

Siemens

We are the catalyst for the industrial world’s digital transformation.

For more than 35 years, ground breaking technologies and business models engineered and developed by Siemens Turkey R&D department contributes to the global success of Siemens

Our R&D activities focused on the fields of electrification, automation and digitalization, provides end-to-end support to our global customers on their unique digital transformation journey.

We aim to increase our strength on solution and product development with world class SW development experts, with the vision to be the digitalization partner for our global customers.

We need game changers like you, to bring the next level of smart manufacturing and infrastructure from mere concept to reality, develop tomorrow’s smart cities, and address the most critical digitalization challenges across a comprehensive range of industries.

What are my responsibilities?

Cybersecurity Governance related responsibilities:

•Support projects to maintain compliance with regulatory, contractual and internal requirements.

•Annual review and maintenance of Cybersecurity policies, control objectives and standards.

•Train and create awareness within the organization about Siemens Cybersecurity Policy Framework

•Support IT Team about Siemens Cybersecurity Policy Framework.

•Participate of implementation of international standards (ISO27001, IEC 62443, etc.); support during the certification processes; or consulting on the practical Implementation of governance requirements.

Product Security related responsibilities:

• Planning and performing threat and risk analysis according to security guides and creating definition of countermeasures in line with risk acceptance criteria

• Moderating relevant Product & Solution Security activities (e.g. Thread & Risk Analysis sessions)

• Coordinating and Coaching of project teams during product & solution development

• Specification and maintenance of secure coding, secure design guidelines

• Evaluation of third party components regarding product & solution security

• Clearance of implementation and documentation of security critical components

• Taking care of a timely and constructive cooperation between all stakeholders regarding Product & Solution Security

• Involvement in the analysis and handling of security vulnerabilities & incidents

• Verification of implementation regarding the security requirements

What do I need to qualify for this job?

• Bachelor’s / Master's degree in Computer Engineering, Electrical/ Electronics Engineering, IT Security or a relevant academic program

• Proven 5+ years of experience in Software Development Projects and processes

• Excellent command of English is a must, German will be an asset

• Excellent communication / coordination skills

• Familiar with software development life cycle, agile development processes, version control, DevOps 

• Willing to seek ways to improve better processes, best practices within teams and organization

• Certified Information Systems Security Professional (CISSP) and Certified Secure Software Lifecycle Professional (CSSLP) is nice to have