Product Security Incident Response Manager

The NXP Product Security Incident Response Team (PSIRT) is committed to rapidly address security vulnerabilities in NXP products, by responding and documenting reported vulnerabilities and by providing customers with clear guidance on the impact, severity and mitigation. See also www.nxp.com/psirt.

Our organization is growing and therefore we have this new opportunity. We’re looking for an experienced security expert to work on different initiatives and projects with the goal of improving our security posture.

In this role, you:

• Monitor internal and external sources to identify signs of security incidents related to products.
• Collaborate with external security researchers, academia and research organization on projects and vulnerability submissions.
• Support and drive the triage and vulnerability assessments of product vulnerabilities.
• Coordinate with internal teams (engineering, product management, legal, etc.) to ensure timely resolution of incidents.
• Communicate incident status, impact, and mitigation actions to relevant stakeholders.
• Manage incoming Third Party vendor vulnerability pre-notifications.
• Support our software development community in managing vulnerabilities in Third Party Components (TPS) and Open Source Software (OSS).
• Define and develop best practices, processes, and continuous improvement initiatives.
• Contribute to new regulations and standardization activities that may impact product security or our way of working such as the upcoming EU Cyber Resilience Act.

Your profile

• 3 years of relevant work experience in a security related role
• Bachelor’s/master’s degree in engineering – Computer Science, Electrical Engineering, Cybersecurity, or a related field.
• Experience in a Security Operations Center or PSIRT
• Familiarity with CVEs, CWEs, FIRST and related industry initiatives.
• Familiarity with industry-standard security frameworks, standards, and regulations.
• Excellent collaboration and communication skills to work effectively with cross-functional teams.
• Ability to work independently, taking ownership of security initiatives.
• Analytical, flexible, and resilient
• Good understanding of security in the following areas - embedded systems, hardware and software; ability to quickly learn where needed
• Fluent in English

Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.

At NXP in Austria, we are proud to have received several external awards. The Leading Employer Award 2020, 2021, 2022, 2023, 2024 & 2025, which is presented exclusively only to the top 1% of employers in Austria. Since 2022 we are allowed to call ourselves a family-friendly employer.

In 2023 & 2024 NXP Austria was awarded with the ‘Equalita’ quality label - the seal of quality for in-house advancement of women in the workplace.

For more information visit our Career Website or our NXP Austria Website and follow us on social: LinkedIn, Facebook (Global), Facebook (Austria) and Twitter.

What can you expect?

Contract: This is a fulltime position with a permanent contract.

Benefits: Besides a competitive salary, you will be eligible for our bonus plan and receive lunch vouchers, a higher than average number of vacation days and the possibility to buy company shares with a 15% discount.

We also have a work from home policy and many more benefits. In certain cases we also provide a relocation package and support for your move to Austria.

Development opportunities: We believe that a key component to growing our business is to develop our people. To enable you to grow your career at NXP, we offer online and offline learning opportunities to help you develop some of your core and professional skills.

Our office: NXP Graz/Gratkorn is based just outside of Graz, the city with the second highest population in Austria and the capital of the province Styria, with access to a highway, airport proximity and very good public transport connections to Graz.

From there, you can enjoy the variety of opportunities Styria has to offer – whether you prefer outdoor activities in the gorgeous alpine mountains or cultural activities and events in the city of Graz.

Hiring process: Applying only takes a minute! Fill in the online application and share your CV with us. After a positive screening based on your CV you will have an initial phone or video conversation with our Talent Acquisition Consultant followed by several business interviews.

Here are some Useful Tips to help you prepare.

And more: Life at NXP is more than work alone. We like to start our day with a free coffee and chat with a colleague in our social room and every day we offer fresh fruits for all employees. Join us at one of the many social activities that are organized by and for employees such as our summer parties, Christmas parties and sports events like a tennis tournament or sledging. Due to our location right next to the river Mur you can also enjoy the beautiful cycling and running path in your break or before/after work, because we also offer welfare facilities.

NXP provides market competitive compensation according to the benchmarking of the electronic and semiconductor industry. Due to the Austrian Equal Treatment Act we are obligated to state the employment group of our applicable collective bargaining agreement (CBA) “Kollektivvertrag für Angestellte Gewerbe und Handwerk und in der Dienstleistung“, this position (fulltime) is graded in Employment Group V. Your individual experiences and expectations will be considered in the application process. Moreover, we provide attractive benefits to our employees like home office, flexible working time, meal benefits and more.

More information about NXP in Austria...

#LI-a8a1