Create a better #TomorrowWithUs 🚀

At Siemens, we build technology solutions to shape the world we live in. We transform industries and societies by combining the real and digital worlds. With over 300.000 of the world’s most forward-thinking minds and the power of a presence in more than 190 countries, we make a truly global impact.

Join our Siemens Vulnerability Management team and shape our Continuous Threat and Exposure Management (CTEM) Program.

As Cyber Threat Intelligence Specialist you will ensure that Siemens focuses on the risks that matter most. CTEM is built on a continuous cycle of identifying, assessing, and ranking exposures to reduce the likelihood of real‑world exploitation, with prioritization serving as one of its most critical stages. By evaluating exposures based on exploitability, business impact, and the effectiveness of existing controls, this role directly enables our ability to stay ahead of emerging threats and maintain a resilient security posture.

Your expertise will help transform raw vulnerability data into actionable insight, empowering the entire CTEM lifecycle and strengthening our proactive security strategy

 About your responsibilities

• World exploitation trends to determine their severity and likelihood of exploitation.
• Rank and prioritize exposures based on exploitability, business impact, exposure context, and existing security controls.
• Plan and orchestrate company and business-wide campaigns of remediation actions based on the produced prioritization.
• Support the team in the continuous improvement of the supporting toolset, processes and automations.
• Contribute to governance policymaking ensuring alignment with actual exposure risks.
• Develop metrics and KPIs to measure prioritization accuracy and efficiency, aligned with overall CTEM program goals.
• Provide expert support on fixing vulnerabilities when requested to the service.

About your skills and experience:

• Strong understanding of cybersecurity principles, vulnerabilities, and adversarial techniques.
• Strong analytical skills with the ability to analyze large datasets, correlate information, and derive actionable insights within a business context.
• In depth knowledge about common security issues (e.g. OWASP Top 10, CIS, etc).
• Ability to validate detected vulnerabilities and apply and test mitigation measures.
• Hands-on knowledge of Windows and Linux environments, security best practices and hardening techniques
• Strong communication skills with ability to translate complex technical risks into concise business-focused communication to Business stakeholders and C-Level.
• Knowledge of scripting languages (e.g. Python)
• Experience with vulnerability detection platforms such as Qualys, MDVM/Defender, Kali Linux is a plus.
• Security certifications are a plus, such as Security+, CySA+, GCTI, CISSP