Vulnerability Management Expert (m / f / d)

As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you’ll discover that at HARMAN you can grow, make a difference and be proud of the work you do every day.

We’re looking for a Vulnerability Management Expert to join our Global Product Cybersecurity team. You will cooperate with the Vulnerability Manager and collaborate closely with the CTI automation, pentesting team, and IT security. The Vulnerability Management team identifies and prioritizes threats and vulnerabilities in our product environment and reports to key stakeholders. If you are passionate about product security and want to develop solutions that secure our enterprise across all Harman lines of business, we want to talk to you.

1. Collaborate with the global Vulnerability Management team to ensure smooth operations.
2. Analyze, rate, and confirm vulnerabilities reported by external researchers, assessing their business impact and prioritizing remediation activities.
3. Develop VM-related applications/scripts and provide software quality assurance.
4. Manage application and infrastructure patching related to vulnerability remediation.
5. Conduct root cause analysis and lead incident response for critical vulnerabilities.
6. Mentor less experienced team members and support the vulnerability manager.

• BA/BS or MS degree in a relevant field, or 3-6+ years of industry experience in cybersecurity.
• SANS GIAC certifications such as Enterprise Vulnerability Assessor, Penetration Tester, Web Application Penetration Tester, Exploit Researcher, or Advanced Penetration Tester.
• 3-6+ years in a technical cybersecurity role within corporate, military, or law enforcement environments.
• Experience in IT, embedded systems, hardware testing, threat intelligence, or cybersecurity.
• Experience in improving vulnerability management processes, incident response, and vulnerability scanning in OT/ICS, embedded, or product environments.
• Excellent knowledge of cybersecurity standards, risks, threats, and best practices.
• Proficiency in programming/scripting languages like Python, Bash, Ruby.
• Understanding of software/hardware cybersecurity controls, frameworks, and terminology.
• Ability to work autonomously and provide specialized guidance.
• Strong professional ethics and influence, promoting knowledge sharing and collaboration.

• Cybersecurity experience in IT/OT, IoT, or automotive sectors.
• GIAC or equivalent certifications.
• Knowledge of cybersecurity standards (CC, FIPS, NIST).
• Participation in conferences, CTFs, or publication of cybersecurity work.
• Knowledge of CSIRT or PSIRT.
• Spoken German.

• Willingness to travel up to 5% domestically and internationally.
• Willingness to work in an office in Europe (location to be determined).

• A diverse, inclusive work environment with career development, training, and competitive compensation.
• Employee discounts on Harman and Samsung products.
• Flexible work schedule promoting work-life balance and collaboration.
• Attractive salary package aligned with local standards and pension contributions.
• Opportunities for professional growth through HARMAN University and leadership programs.
• Recognition and rewards programs.

HARMAN is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration without regard to race, religion, color, national origin, gender, age, veteran status, disability, or other protected characteristics.

Location: Boblingen, Baden-Württemberg, Germany