Cyber Security Compliance Lead

ADI Global is currently seeking a Product Security Compliance Lader to ensure that our products are secure and compliant throughout their lifecycle, covering design, production, and maintenance. Key responsibilities include assessing security controls against frameworks (e.g., NIST, ISO, IEC), managing product vulnerabilities, coordinating penetration tests, ensuring compliance with regulations like the Cyber Resilience Act, and fostering a "secure-by-design" culture within R&D

JOB DUTIES:

• Liaise with stakeholders such as security, engineering and legal teams, vendors, and end-users regarding product compliance with internal security frameworks, adopted industry standards, and applicable cybersecurity regulation.
• Develop, implement, and enforce product security policies, procedures, white papers regarding product security posture.
• Monitor, interpret, and apply relevant laws and standards to products, such as CRA, RED, GDPR, CCPA, NIST RMF, ISO 27K, and how they impact ADI products.
• Stay updated on the latest IoT security trends, regulations, standards, and best practices, ensuring ADI policies and procedures remain current and effective.
• Conduct security audits, risk assessments, and vulnerability assessments to validate compliance.
• Analyze supply chains to ensure components meet safety and security requirements.
• Coordinate with engineering teams to handle security incidents and ensuring timely remediation.
• Interface with Legal and Marketing Communications group to manage communications of security vulnerabilities in Resideo products

YOU MUST HAVE:

• Bachelor's degree in computer science, electrical engineering, mathematics, or similar discipline.
• A passion for product security and safety compliance so as to provide excellence to your stakeholders
• Excellent communication and leadership skills. An excellent level of English (written and spoken)

• Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders

WE VALUE:

• Certifications in security and privacy demonstrating deep practical knowledge such as CSSLP, CISSP, CISA
• Master's degree in computer science, electrical engineering, mathematics, or similar discipline

• Background in the legal field

WHAT'S IN IT FOR YOU:

• Stable multinational company
• 5 weeks of holidays
• Possibility of working from home 2x per week.
• Private parking, good public transport links
• Pluxee leisure allowance of CZK 4,500/year
• Multisport card
• Meal allowance of CZK 80/day
• Contribution to life/pension insurance/DIP
• Discounted mobile phone tariff for family members
• Language courses
• Company events (Christmas party, team building)

• Free refreshments at work (coffee, tea, fruit)

#LI-TC1

#LI-HYBRID