The future of metrology begins at ZEISS
ZEISS Industrial Quality Solution stands for pioneering measurement technology with more than 100 years of tradition. We develop and produce high-performance tactile, optical 3D and X-ray measuring devices and also offer suitable software solutions for analysing measurement data. With a strong and broad technology and software portfolio, comprehensive expertise and a global presence, ZEISS is a preferred partner in a wide range of industries, including electromobility, medical technology, additive manufacturing and aircraft construction.
In our cross-site Security Team, we work together with the product teams to ensure that we deliver secure and reliable products to our customers. You will be part of the team at the Oberkochen location and take on the following responsibilities:
Your Role
1. Definition and operational responsibility for the implementation of the Secure Development Lifecycle of our measurement technology products
2. Conducting and reviewing security risk management, including threat modeling and code reviews, throughout the entire product lifecycle
3. Development and integration of security measures in close collaboration with the team, tailored to the specific needs and risks of the products
4. Promoting a security culture and clearly conveying complex security concepts to stakeholders, as well as providing technical guidance to security engineers from various departments
5. Ensuring compliance with international security standards and legal requirements, including the Cyber Resilience Act, by jointly developing policies and procedures and conducting compliance assessments
6. Implementation and evaluation of innovative security solutions and technologies to enhance product protection and data security
Your Profile
7. Completed master's degree in Computer Science, Information Security, or a related field
8. Solid knowledge in information security, including threat modeling, risk assessment, and security architectures; experience with modern security solutions and technologies such as cloud security and IoT security
9. Familiarity with common security frameworks, standards, and best practices such as IEC 62443, ISO 27001, Cyber Resilience Act (CRA), and NIS-2
10. Strong leadership skills to promote a security culture, as well as excellent communication skills to convey complex security concepts clearly and advise stakeholders
11. Relevant certifications such as CISSP or CCSP are desirable; willingness for continuous education and adaptation to new security standards and technologies
12. Experience working with international teams and the ability to develop security strategies tailored to Zeiss's global markets and customers
13. Fluent in English, both spoken and written; German is a plus
Become part of our team and set new standards in industrial measurement technology!
Your ZEISS Recruiting Team:
Katharina Eymann