Job DescriptionWe are seeking a highly skilled professional to support our product cyber security governance, risk management, and compliance activities across the product lifecycle.The ideal candidate will act as liaison between the product cyber security organization and central GRC functions, ensuring alignment of policies, risk methodology, and reporting structures.Maintain and further develop group-wide product security policies, controls, and governance processes in collaboration with central GRC unit.Drive risk transparency for product-related cyber risks through structured identification, assessment, documentation, and tracking in line with enterprise GRC frameworks.Coordinate security-related risk assessments together with GRC- and Consulting unit, and control maturity evaluations in product development and lifecycle activities.Support conformity with cybersecurity-relevant regulatory requirements, such as EU Cyber Resilience Act, RED, NIS2, or UNECE R155/R156, in alignment with compliance and legal experts.Support product security audits and internal/external assessments, ensuring readiness and harmonization with overarching corporate GRC goals.Contribute to executive reporting, KPIs/KRIs and management steering materials prepared by the CPSO.Required Skills and QualificationsOur ideal candidate should possess:A degree in Cyber Security, Engineering, Computer Science, Risk Management or related field.3+ years of experience in cyber security governance, risk, or compliance, ideally with exposure to product cyber security in regulated industries (e.g. machinery, automotive, aerospace).Practical experience working with or within enterprise GRC units (IT, OT, or Product Security), ideally in a matrix or group structure.Familiarity with norms and standards, like IEC 62443.Knowledge of regulatory frameworks affecting product cyber security, e.g. Cyber Resilience Act, RED, NIS2, UNECE R155/R156.Strong skills in stakeholder coordination and cross-functional collaboration, especially with compliance, legal, IT security, and engineering functions.Structured, analytical mindset with experience in risk methodology, control assessments, or audit preparation.Fluency in English is required; German is an asset.