Company: HITACHI ENERGY SERVICES SP. Z O.O. Job ID: R0096795 Date Posted: 2025-06-23 Profession: IT, Telecom & Internet Job Schedule: Full time Remote: No Locations: Krakow, Lesser Poland, Poland; Bengaluru, Karnataka, India
General Information:
Hitachi Energy is seeking a highly motivated Product Security Specialist to establish an enterprise approach to Product Risk Management. As an energy technology company, we are driven by our purpose to inspire sustainable progress, powered by our engineers, digital pioneers, creators, and innovators.
Responsibilities:
- Review the current state of Product Risk generated by security control testing and vulnerability management activities.
- Provide technical tool integration and architect guidance regarding product cybersecurity vulnerability identification, remediation, and response to business and Enterprise Risk Management reporting.
- Lead the development of innovative solutions and drive the implementation of new tools and technologies for product risk management and reporting, meeting customer requirements and defining risk maturity goals.
- Manage Product Security content, including standard assessment and risk review documentation for audit and compliance reporting.
- Support the implementation of best security practices, methods, processes, tools, and continuous improvement initiatives to scale and increase the efficiency of Hitachi Energy processes.
- Establish corporate-level oversight of the end-to-end Product Risk Management process with Enterprise Risk Management, defining methods to track and ensure adherence to product standards and exception policies.
- Set up best practices and operational processes for full transparency and mitigation of Product Risks.
- Conduct Product Risk Impact Assessments with business units for risk remediation tracking and reporting.
- Drive awareness of product vulnerability findings across the developer community to promote secure development lifecycle practices, system hardening, and vulnerability and code scanning management.
- Track global Cyber regulations, security audits, and reviews to ensure policies and processes are followed.
- Maintain a complete understanding of inherent risks in Product Security management.
Your Background:
- Master's degree or higher in Computer Science, Software Engineering, or a related qualification, with demonstrated capability through past employment experience.
- Approximately 8+ years of experience in vulnerability management with customers in IT and industrial systems.
- In-depth understanding of cybersecurity technology, solutions, and processes, particularly in vulnerability handling management, incident response handling, and risk management.
- Strong project management skills, including planning, organizing, monitoring, and reporting on project activities.
- Security Audit experience is a plus.
- Strong analytical problem-solving skills and practical cybersecurity experience.
- Ability to understand and communicate complex cybersecurity requirements.
- Strong communication skills, including planning and leading effective meetings, conducting structured interviews, interpersonal and negotiation skills, and presenting to various audiences.
- Security industry certifications such as SANS GIAC or industrial control system-related certifications are a plus.
- Working experience in Product Security is a plus but not mandatory.
