PThe Head of Product Security is responsible for ensuring the cybersecurity of Liebherr Products/Machines and related digital products throughout their entire lifecycle. The role defines and drives product security strategy, embeds security-by-design into engineering, and ensures compliance with EU product cybersecurity regulations, including the Cyber Resilience Act (CRA) and NIS2, while protecting connected machines, embedded systems, and digital services. Ensuring alignment with business strategies, demands, and risk appetite, working closely with Corporate Product Security Officer, as well as the Product Security Officers/Engineers of Product Segments. /p ppbResponsibilities: /b /p /p liDefine and lead global product security strategy, roadmap and execution for construction machines and digital products. /li liDefine product security controls (secure coding, vulnerability management, incident response) based on threat modelling and risk appetite. /li liAct as central focal point for product security topics within Corporate Information Security and to internal/external customers for product security matters, risk, regulatory findings /li liDefine the product security governance framework (policies, standards, controls) and ensure adoption into RD, engineering, and product lifecycle processes /li liSponsor, build and deploy training, awareness, and support to Engineering teams on security best practices. /li liEnsure product compliance with EU Cyber Resilience Act (CRA), NIS2, and other applicable global regulations /li liEmbed security-by-design into hardware, firmware, embedded software, and connected platforms. /li liBuild, mentor and lead a team of product security experts. Foster collaboration with Engineering teams and across Corporate Information Security domains. /li ppbCompetencies: /b /p /p liA degree in Engineering, Cybersecurity, Computer Science, or a related field /li liAt least 5 years of experience in product or embedded cybersecurity, including 3+ years in a leadership role /li liStrong background in embedded systems, connected products, or industrial/IoT security /li liProven ability to translate regulatory and technical requirements into practical engineering execution /li liSolid knowledge of standards and regulations such as UNECE R155/R156, EU CRA, IEC 62443, ISO 21434, NIST CSF /li liExperience with security testing methods and tools (e.g. SAST, DAST, fuzzing) /li liStrong leadership, communication, and stakeholder management skills /li liExperience in manufacturing, industrial, automotive, or heavy equipment environments is a strong advantage /li liFluent English required; German and French are a plus /li ppbOur offer: /b /p /p pWe offer you a secure job, progressive and family-friendly employment conditions such as flexible working hours, hybrid working and opportunities for further training. /p