Logo NXP Semiconductors Austria

Product Security Incident Response Manager

NXP Semiconductors Austria

Job

  • Level
    Experienced
  • Job Field
    IT, Security
  • Employment Type
    Full Time
  • Contract Type
    Permanent employment
  • Location
    Gratkorn
  • Working Model
    Onsite

    • Job Summary

    In this role, you will actively identify and address security incidents in NXP products while collaborating with various teams to enhance security standards.

    Job Technologies

    Your role in the team

    • The NXP Product Security Incident Response Team (PSIRT) is committed to rapidly address security vulnerabilities in NXP products, by responding and documenting reported vulnerabilities and by providing customers with clear guidance on the impact, severity and mitigation.
    • We’re looking for an experienced security expert to work on different initiatives and projects with the goal of improving our security posture.
    • In addition, you will be responsible for identifying, triaging, and supporting resolution of product-related security incidents.
    • You’ll get the opportunity to collaborate across engineering, security teams, product managers and others with the goal of protecting our products and customers.
    • Empower our software development community in managing vulnerabilities in Third Party Components (TPS) and Open Source Software (OSS), ensuring robust security.
    • Define and develop best practices, streamline processes, and drive continuous improvement initiatives.
    • Contribute to new regulations and standardization activities that may impact product security or our way of working such as the upcoming EU Cyber Resilience Act.
    • Collaborate with innovators – partner with external security researchers, academia, and research organizations on cutting-edge projects and vulnerability submissions.
    • Be a key player in risk management by supporting and leading triage and vulnerability assessments of product vulnerabilities.
    • Work cross-functionally with internal teams (engineering, product management, legal, etc.) to ensure timely resolution of incidents.
    • Own the process by generating and managing PSIRT JIRA tickets for validated vulnerabilities.
    • Provide updates about incident status, impact, and mitigation actions to relevant stakeholders.
    • Manage incoming Third Party vendor vulnerability pre-notifications and monitor internal and external sources to identify signs of security incidents related to our products.

    This text has been machine translated. Show original

    Our expectations of you

    Education

    • Bachelor’s/master’s degree in engineering – Computer Science, Electrical Engineering, Cybersecurity, or a related field.

    Qualifications

    • Familiarity with a Security Operations Center (SOC), PSIRT, or similar security incident response teams.
    • Vertrautheit mit branchenüblichen Sicherheitsrahmenwerken, Standards und Vorschriften.
    • Understanding of security in the following areas - embedded systems, hardware and software; ability to quickly learn where needed.
    • Interests in security concepts, secure coding, and security best practices.
    • Excellent collaboration and communication skills to work effectively with cross-functional teams.
    • Ability to work independently, taking ownership of security initiatives and improving processes.
    • The successful candidate may/will be responsible for security related tasks.
    • The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.

    Experience

    • Experience in product security incident response, investigation and vulnerability management across hardware and software products.

    This text has been machine translated. Show original

    What we offer

    • For Austrian applicants: NXP provides market competitive compensation according to the benchmarking of the electronic and semiconductor industry.
    • Due to the Austrian Equal Treatment Act, we are obliged to specify the employment group of our applicable collective bargaining agreement (CBA) "Kollektivvertrag für Angestellte Gewerbe und Handwerk und in der Dienstleistung." This position (full-time) is classified in Employment Group V.
    • Your individual experiences and expectations will be considered in the application process.
    • Moreover, we provide attractive benefits to our employees such as home office, flexible working hours, meal benefits, and more.

    This text has been machine translated. Show original

    Benefits

    Work-Life-Integration

    Food & Drink

    More net

    Health, Fitness & Fun

    Topics that you deal with on the job

    Job Locations

    Map of company locations

    • Location Gratkorn

      Mikron-Weg 1

      8101 Gratkorn

      Austria

    This is your employer

    NXP Semiconductors Austria

    NXP Semiconductors Austria

    Gratkorn

    NXP Semiconductors is a global leader in microelectronics with subsidiaries in more than 25 countries. The Gratkorn site near Graz is the Austrian headquarters of the international group and the competence center for secure contactless identification systems.

    Description

  • Founding year
    2006
  • Language
    English
  • Company Type
    Established Company
  • Working Model
    Full Remote, Hybrid, Onsite
  • Industry
    Industry, Production

    • Dev Reviews

    by devworkplaces.com

    Total

    (2 Reviews)
    3.7

    • Culture

      3.7

    • Engineering

      3.4

    • Career Growth

      3.5

    • Workingconditions

      4.2
    Show All Dev Reviews
    Logo NXP Semiconductors Austria

    Product Security Incident Response Manager

    NXP Semiconductors Austria
    Location
    Gratkorn
    Working Model
    Onsite
    Diversity
    Open for all genders
    English Only
    English only required

    More Jobs