Head of EL Digital Asset Security

As the Head of Digital Asset Security, you play a pivotal role within Electronics (EL) cyber security team, reporting directly to the EL CISO.

You are part of the global cyber security team, interfacing with EL business and corporate cyber security teams. You lead teams managing security for R&D, applications, SAP systems, cloud environments, and digital products, while also providing operational support.

You develop and run essential technical capabilities, especially in OT environments, ensuring alignment with corporate cyber security.

Your role is crucial in protecting EL information assets and maintaining a robust cyber security posture. Key Responsibilities : Lead teams in developing and maintaining security for R&D activities, business applications, SAP systems, cloud environments, and digital products.

Provide strategic guidance for advanced IT / OT cyber security measures. Collaborate with EL CISO, corporate cyber security, and Regional / Site Cyber Security Managers.

Develop security strategies for R&D projects, ensuring robust measures and engaging in hands-on tasks. Communicate the vision for business application security, maintain guidelines, secure SDLC, and implement CI / CD security controls.

Collaborate with engineering teams to address vulnerabilities and oversee penetration testing. Oversee SAP security strategies, including user access management and maintaining security settings.

Define and improve the cloud security governance framework, ensure compliance, and engage with new cloud technologies. Who you are : A minimum of 8 years of experience in cyber security, with at least 3 years in a leadership role focused on R&D security, application security, SAP security, cloud security, and digital products.

Strong interpersonal skills and the ability to work collaboratively with cross-functional teams and external partners.Familiarity with frameworks and standards such as ITIL, CoBiT, NIST CSF, ISO / IEC 27001 / 27002, C5.

• Extensive experience in : protecting intellectual property, managing access controls, and securing sensitive research data;
• using tools like OWASP ZAP, Fortify, and Veracode; implementing SAP GRC, securing SAP HANA, and managing SAP authorization concepts;

utilizing tools like AWS Security Hub, Azure Security Center, and Google Cloud Security Command Center; applying secure coding practices, conducting security testing, and ensuring compliance with security standards.

Information security certifications such as CISM, CISA, relevant ISO certifications are a plus.Technical knowledge of IT and OT infrastructure, architecture, and security tools is a must.

Demonstrated experience in managing security in OT environments.In-depth knowledge of regulations (e.g., CRA, PSTI)Understanding of the specific security challenges and regulatory requirements of the chemical and semiconductor industry, including production facilities, is a plus.

Excellent verbal and written communication skills in English (German is a plus).