Business Unit: Research in Digitalization and Automation
Requisition Number: 244329
Primary Location: United States-New Jersey-Princeton
Assignment Category: Full-time regular
Experience Level: Entry level
Education Required Level: Master's Degree
Travel Required: 15%
Cyber Security Research, Vulnerability Management
Security for Industrial Digitalization in the 21st Century
Here’s the right opportunity for You!
Cyber security is a key enabler for Digitalization in industry. Without security and trust, the benefits of interconnected industrial systems will not come as quickly and comprehensively as needed. A crucial element of providing and maintaining the security of industrial devices is comprehensive, risk-based, and usable vulnerability management. Hence, Siemens must make sure that our products and solutions meet and exceed these expectations.
Do you think you can decide when and when not to patch an industrial system? Do you want to develop technology to finally make patching a non-problem, even in critical infrastructure and networks, e.g., based on Digital Twins? Are you excited about improving the area of vulnerability management in industrial environments on a global scale, and are your never satisfied to accept any status quo that is less than optimal? If you answered YES, then come and join our team NOW, we NEED you!
Our research team is composed of makers, innovators, engineers, and researchers that unite a passion about cyber security and securing our customers’ assets and networks - in domains such as control systems used in energy utilities that are part of the nation’s critical infrastructure, smart factories, building automation systems, intelligent transportation systems, healthcare, and innovative new products and solutions developed by Siemens. Our close contact to all our business units in Siemens provides the opportunity to contribute to and gain experience in real industrial applications.
Siemens Corporate Technology in Princeton, NJ
Our research team is located in beautiful Princeton, NJ, a university town packed with exceptional international talent that provide a unique feel of this true cultural gem in the state. The town has plenty of activities to offer, but for those looking for more, at just about 1h drive we have NYC or Philadelphia! We have the best public schools in the country and all of the above glued together by a very active and welcoming community!
As Siemens’ central Research & Development department, we embrace this community. Our core mission is to support our Siemens business units as a central knowledge hub for all cyber security capabilities globally. We research and develop new and innovative solutions, based on much-needed deep technical expertise, and our network with internal and external experts and academia. This allows us to invent new solutions and approaches, and verify their feasibility in the “real world” together with the product development teams of our business units – creating a stimulating setup for quick innovation cycles and rapid prototyping.
This could be your responsibility and role for Siemens!
Your task will be to identify and understand the unique challenges of vulnerability management in the world of industrial networks and Operation Technology (OT), and the state-of-the-art in Siemens.
You will research new and improved approaches for vulnerability management, and work with internal and external researchers and experts to drive research results, and publish results where possible. You will participate in larger research initiatives, such as government funded research projects.
You will formulate problem statements for vulnerability management challenges and define a research road map to find and design new and innovative solutions to solve these problems.
You will support business units in applying state-of-the-art technology and approaches to vulnerability management, and help them to define, design, and implement best in class vulnerability management solutions.
You will take responsibility to represent the topic of industrial vulnerability management research within the company, as well as outside, in the role of a key subject matter expert.
Within the local team, your role will be that of an individual contributor and/or (sub-) project manager in customer projects and research projects (including Government funded research), that will focus on vulnerability management and cyber defense, analysis of best and state-of-the-art solutions and features, as well as working with developers to integrate these security features into overall solutions to fit customer needs.
What does it take to succeed in this position?
Ph.D. in Computer Science, Information Security, Mathematics, or another relevant field required, or M.Sc. with equivalent R&D experience
3+ years of experience in vulnerability management, cyber defense, and/or industrial cyber security required
3+ years of experience in industrial / OT devices, networks, and/or operations required
Excellent up-to-date deep technical and hands-on knowledge in current cyber security challenges and standard approaches to create and maintain secure environments, and in approaches to mitigate cyber security risk for complex systems and solutions; with credible background relevant to vulnerability management
Problem solver who sees a roadblock and figures out how to get around it with a strong hands-on and can-do attitude, and with high work ethics and sense of ownership for the delivered results
Strong communication skills in English a key requirement; German, or other languages, a significant plus
Willingness to travel, up to 15% (domestic/international)
Strong people skills; must be able to work in diverse teams in the role of technical advisor, and push teams to success
Strong analytical skills; must be able to transform high level requirements into technical requirements, match existing solutions against them, and clearly show degree of coverage and remaining gaps
Successful candidate must be able to work with controlled technology in accordance with US Export Control Law. US Export Control laws and applicable regulations govern the distribution of strategically important technology, services and information to foreign nationals and foreign countries. Siemens may require candidates under consideration for employment opportunities to submit information regarding citizenship status to allow the organization to comply with specific US Export Control laws and regulations. Additional information on the US Export Control laws & regulations can be found on http://www.bis.doc.gov/index.php/policy-guidance/deemed-exports/deemed-exports-faqs?view=category&id=33#