Cybersecurity Manager

At Auren Personas we work from the Recruitment & Executive Search division and we are dedicated to providing specialized Human Resources consulting services.

We are currently collaborating with a leading HVAC industry company based in Madrid., which is looking to add a Cybersecurity Manager to its team.

• Create the cybersecurity strategy based on business strategy and business priority aligned with the cybersecurity competence centre.
• Apply the product cybersecurity governance framework and processes to the organization.
• Implement the security lifecycle process in the organization.
• Establish and maintain a process asset classification to ensure that measures taken to protect solutions are proportional to their business value and criticality for safety.
• Publish and implement product cybersecurity policies and guidelines to drive the secure development of solutions.
• Develop and maintain a product cybersecurity program to implement the strategy for the organization and continuously improve maturity.
• Implement an effective risk management process and risk assessment methodology for cyber-risks solutions and supply chain.
• Ensure that risk assessment, vulnerability assessment and threat analyses are conducted periodically and consistently to identify risk.
• Recommend controls, safeguards and countermeasures to effectively eliminate, mitigate or transfer cyber-risks and in components down the supply chain.
• Identify internal and external influences (e.g. technology, business environment, risk tolerance, geographic location, legal and regulatory requirements, customers) to ensure that these factors are addresses by the product cybersecurity strategy.
• Implement an effective Incident Management process aligned with the Competence Center for Product Cybersecurity.
• Define and communicate roles and responsibilities across the organizations to establish clear accountability and lines of authority.
• Obtain commitment from all stakeholders and senior management to assure successful implementation of the strategy.
• Establish, monitor, evaluate and report metrics, key performance indicators, key risk indicators to provide management with accurate information regarding the effectiveness of the product cybersecurity strategy, cybersecurity program and cyber risk management.

• Academic or professional education in industrial, telecommunications, computer, or similar engineering or similar.
• +10 years of experience developing similar functions (Offensive Cybersecurity, Defensive Cybersecurity, Cyber Risk Management, Product Cybersecurity, Project Management, Industrial Cybersecurity).
• Knowledge in Cybersecurity norms, Cyber risk management, and Product and Industrial Cybersecurity.
• Knowledge of language C, C++, C#, and Python.
• Knowledge of Operating Systems in real time.
• Knowledge of communication protocols (Ethernet, MVC, CAN, RS485).

• Permanent employment within the team.
• Opportunity for professional growth and development.
• Partial remote work options.
• Additional benefits.

We appreciate your application and interest, we look forward to meeting your talent!