Siemens Digital Industries Software is a leading provider of solutions for the design, simulation, and manufacture of products across many different industries. Formula 1 cars, skyscrapers, ships, space exploration vehicles, and many of the objects we see in our daily lives are being conceived and manufactured using our Product Lifecycle Management (PLM) software.

Duties & Responsibilities:

• Analysis, assessment, evaluation and documentation of incoming issues/security reports from various resources like HackerOne, our penetration testers, customer tickets and internal tools
• Manage and monitor tools related to the cloud technologies that play a vital role in protecting the organization's and customers' data
• Verify security fixes and solutions implemented by teams in response to found issues and vulnerabilities
• Create vulnerability risk overview reporting for each release cycle
• Thrive for continuous improvements to processes and automate wherever it makes sense

• Bachelor's degree in Computer Science or comparable experience and knowledge
• High level of initiative and self-direction
• Sound knowledge, skills and confidence in using scripting language (e.g. python) and web-based testing frameworks
• Solid analytical skills, ability to reproduce and pinpoint issues and validate fix implementations in various stacks and technologies
• Solid understanding of vulnerability calculation methods like CVSS
• Excellent communicator in English, both written and spoken while being able to convey information effectively at multiple levels of sensitivity and for various audiences
• Teamwork abilities, willingness to help and assist colleagues
• An independent and active security certification is a plus but not required, for example:
• Certified Security Analist (ECSA);
• Licensed Penetration Tester (LPT);
• Offensive Security Certified Professional (OSCP);
• Offensive Security Certified Web Expert (OSWE);
• GIAC Penetration Tester (GPEN)