As a Product Security Governance Lead, you will be part of Schneider Electric China Cyber & Product Security Organization and play a pivotal role in ensuring that security is built-in by default for Local Offers and provide in-country support for global offers, including Software, SaaS / Mobile Applications, Edge and Connected devices, as well as being responsible for internal and external vulnerability management, your responsibilities will include:
• Ensure product security related activities are in compliance with Regulations and SE policies;
• Support and monitor SDL (Security Development Lifecycle) deployment and maturity improvement for the Line of Business;
• Act as a consultant and support on SDL activities such as security requirements, secure solutions, threat modeling;
Want more jobs like this?
Get jobs in Beijing, China delivered to your inbox every week.
• Work with global CPCERT for vulnerability management of local offers with related internal and external communication;
• Lead and coordinate product security related initiatives across Line of Business, such as Community, Expertise Trainings;
• Support global HQ to perform internal surveillance audits of SDL across Line of Business;
资格
• Bachelor's degree or higher in Computer Science, Software Engineering, Electronic Information Engineering or Cybersecurity;
• 5+ years of hands-on experience in a similar role;
• Proven experience of working in an Engineering/R&D department following a Secure Development Lifecycle based on standards such as IEC 62443-4-1, ISO 21434, or Microsoft SDL with a proven ability to engage with management and development teams;
• Demonstrated project management, communication and teamwork skills, including the ability to write concise reports, summaries, and presentations;
• Knowledge of IACS, Industry Software / Network, Cloud-native Security, DevSecOps;
• Cybersecurity certifications such as CISSP, CSSLP, CCSP, CISP, ISA / IEC 62443 Expert are preferred;
• Workable English is mandatory;
时间表: 全职
请求编号: 009C5S