Do you dare to lead the digital transformation to create a more sustainable world?
At Schneider Electric, we are the leading digital partner in sustainability and efficiency for businesses, communities, and individuals. Our goal is for all people to be able to make the most of our energy and resources through the integration of processes, software, big data, and energy technologies that enable integrated management of buildings, industries, and cities. We are present in over 110 countries with a diverse and disruptive team of over 150,000 people. If you are seeking an opportunity to propel your career and challenge your creativity, we want to meet you!
We are seeking a Senior Cyber Security Analyst - Product Vulnerability Management to join our team. The successful candidate will support coordinated disclosure of vulnerabilities on all Schneider Electric products. You will support in coordinating the end to end process of vulnerability response lifecycle from intake to diclosure and you will be committed to remediation of security vulnerabilities in the products within reasonable time depending on the severity of the issue. You will partner with external security researchers and internal stakeholders like BU, legal, communication, and customer support for remediation and disclosure of the vulnerabilities. You will handle the effective management of customer and product related vulnerabilities, as well as continuous improvement of the necessary processes (e.g. Threat Intelligence, Inventory Management, Vulnerability Scanning etc.). You will collaborate with the Business Unit teams, as well as all other units where collaboration is needed for Cybersecurity (e.g. GSC, Corporate Legal, Schneider Digital, Communications).
Want more jobs like this?
Get jobs in Barcelona, Spain delivered to your inbox every week.
What will you do?
- Responsible for driving Vulnerability Management process execution in the Business Units whether externally reported or Internally discovered (Intake, Triage, Planning, Execution, Customer Notification, lessons learned etc)
- Coordinate and follow-up with the Division Cyber Security Officer and CERT Leaders for SLA adherence
- Escalate the cases that require attention
- Work with the BU and propose improvement of the related processes or identified gaps in the operations
- Support Security Notification process for patch Tuesday monthly releases
- Provide Timely response and update to the researchers
- Prepare detailed operational reports to bring insights on focus areas for BU and CERT leaders
- Train the CyberSecurity people and Offer Managers in the Business Units on Vulnerability Management
- Prepare and maintain Knowledgebase for the BU
- Act as a subject matter expert in the Vulenrability Management process and advocate the process across the BU
What qualifications will make you successful for this role?
- 6-8 years of overall experience and 2+ years CyberSecurity experience
- Bachelor's degree in Cybsesecurity, Computer Science, Information Systems or Engineering/Science required
- Good and proven CyberSecurity skills and experience in issue management as well as designing/defining proactive mitigation strategies
- Extensive understanding of triaging and assessing risks associated with cybersecurity vulnerabilities in Critical Infrastructure products (CVSS, CWE, OWASP Top 10)
- Qualifications/Certifications in Cybersecurity a plus (CEH, CSSLP, CISSP etc.)
- Ability to work with autonomy and self motivated
- Ability to organize and run efficient meetings and document meeting minutes and action items
- Demonstrated ability to stay focused
- Ability to conform to shifting priorities, demands and timelines through analytical, problem solving and organization capabilities
- Ability to multi task, and to work under pressure
- Experience & understanding of the complexity of co-working in a global project team
- Strong attention to detail when reviewing external documentation
- Good understanding and experience of best practices of end-2-end secure development lifecycle for products and systems
- Good understanding and experience of key topics in Cybersecurity as Vulnerability Management, Risk Management, Incident Response, Penetration Testing, Quality assurance
- Good understanding of the differences and challenges of the convergence of OT and IT worlds for our customers
- Strong interpersonal and intercultural skills
- Excellent presentation and communications skills, both written and oral
- High level of energy and passion
- Strong interpersonal and intercultural skills
- Excellent presentation and communications skills, both written and oral
What will you get?
We adapt to you:
With our flexible schedule, you'll have the freedom to adjust your work hours to accommodate your personal needs and responsibilities.
We know how great it is to work from home. With our hybrid work plan, you can enjoy working from the comfort of your home.
Need more time to relax and disconnect? With our Holy Pack, you can purchase additional vacation days to recharge when you need it most.
Celebrate holidays your way! With Floating Holidays, you can exchange holidays for other days that better suit your plans and personal preferences.
Need additional time to explore new experiences or focus on personal projects? With the Sabbatical Pack, you can request up to 2 months of extra leave (unpaid).
We value the importance of family and want to support you in all aspects of your life. Our Global Family Leave Policy provides flexible paid conditions for when you need it most, whether you're about to be a parent, need time to overcome a loss, or to care for a loved one.
We take care of you:
With access to the health and wellness platform Wellwo, you and up to 5 people of your choice can enjoy virtual medical care and 24/7 psychological support, as well as access to nutrition counseling, fitness classes, and more!
From dance classes to booking a hotel spa, we offer an agreement with Wellhub so you can access a network of thousands of gyms and sports centers to keep your body active in the way you like best.
Your well-being is our priority. You will have medical service at your workplace for close attention to any medical needs.
We empower you:
With Open Talent Market, our AI-driven professional development platform, you can connect with job opportunities, projects, and mentors at Schneider Electric globally.
We offer you the opportunity to be a shareholder of Schneider Electric and share in our achievements with our stock ownership program.
We celebrate everyone's talent and success with our recognition program, through which you can give and receive points for your achievements and redeem them for gift cards at your favorite stores.
You will have life insurance for your protection.
We offer you a Flexible Remuneration Plan in which you can choose from a variety of options, such as health insurance, meal vouchers, childcare vouchers, transportation vouchers, training, and more.
With Club Schneider, you will enjoy special discounts at your favorite stores, restaurants, travel agencies, and other external services.
Participate in company-subsidized volunteer programs to contribute to our community and have a positive impact on your environment.
#LI-AF1
DIGCYBR24
Looking to make an IMPACT with your career?
When you are thinking about joining a new team, culture matters. At Schneider Electric, our values and behaviors are the foundation for creating a great culture to support business success. We believe that our IMPACT values - Inclusion, Mastery, Purpose, Action, Curiosity, Teamwork - starts with us.
IMPACT is also your invitation to join Schneider Electric where you can contribute to turning sustainability ambition into actions, no matter what role you play. It is a call to connect your career with the ambition of achieving a more resilient, efficient, and sustainable world.
We are looking for IMPACT Makers; exceptional people who turn sustainability ambitions into actions at the intersection of automation, electrification, and digitization. We celebrate IMPACT Makers and believe everyone has the potential to be one.
Become an IMPACT Maker with Schneider Electric - apply today!
36 billion global revenue
+13% organic growth
150 000+ employees in 100+ countries
#1 on the Global 100 World's most sustainable corporations
You must submit an online application to be considered for any position with us. This position will be posted until filled.
Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best. We mirror the diversity of the communities in which we operate, and 'inclusion' is one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do. This extends to our Candidates and is embedded in our Hiring Practices.
You can find out more about our commitment to Diversity, Equity and Inclusion here and our DEI Policy here
At Schneider Electric, we uphold the highest standards of ethics and compliance, and we believe that trust is a foundational value. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality and cybersecurity, underpinning every aspect of our business and our willingness to behave and respond respectfully and in good faith to all our stakeholders. You can find out more about our Trust Charter here
Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color, gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.