The Site and Process Security Certification (SPSC) team forms an integral part of the Competence Center Crypto & Security (CCC&S) within the NXP CTO organisation. The primary aim of this team is to support NXP’s various business units in matters relating to product certification and to facilitate customer interactions concerning security certification. The SPSC team is actively involved in assessing site and process security requirements with both customers and regulatory bodies, adhering to a range of international standards such as ISO 27001, Common Criteria, GSMA SAS-UP, IEC 62443, and ISO 21434. Additionally, the team manages security-related tasks and lends support to security initiatives regarding standardisation and interpretation.
We are seeking a candidate to join the Competence Centre Crypto and Security (CCC&S), specifically within the Site and Process Certification team. The successful applicant will assume the position of Site Security Manager, responsible for supporting both the Site Certification team and the Hamburg Site Management team to safeguard NXP’s intellectual property. Furthermore, the Site Security Manager will ensure ongoing compliance with relevant Information Security standards (such as ISO 27001, Common Criteria, GSMA, among others).
Define the security design for the Hamburg Site to ensure the protection of NXP’s intellectual property.
Develop and implement local physical security programmes.
Apply customer-specific physical security requirements.
Establish and enforce local physical security policies and procedures.
Combine technical skills with knowledge of physical security needs
Collaborate with site management to address security needs and requirements.
Interface with various departments, including IT, Cybersecurity, Global Security, Facility Management, HR, and Operations, to coordinate audit preparation and day-to-day operational requirements.
Participate in security-related reviews alongside multiple teams and stakeholders.
Engage in negotiations and manage site security matters in conjunction with security vendors.
Prepare and present local security-awareness training sessions.
Support the Information Security Management System (ISMS), including the maintenance of procedures and documentation.
Assist with the implementation of security requirements tied to certifications or specific customer demands.
Creation of security reports for certifications, aided by the local team and certification managers.
Conduct audits, monitor, and control various operational areas to ensure adherence to relevant requirements.
Supervise incident and risk management processes for the site.
Evaluate the impact of site changes on security, ensuring ongoing compliance with security standards and company policies (site change management).
Manage the in-house contracted security staff.
Participate in security certification team meetings and provide project status updates.
Assist Site Security & Certification Managers in organising security audits within Germany.
Help the Site Certification team to maintain the project pipeline and plan certification activities.
A university degree in Security Management or a closely related discipline is preferred.
A minimum of three to five years’ relevant work experience in site security.
Solid understanding of physical security practices and principles.
Proficiency in Microsoft Office tools, including Excel and PowerPoint..
Demonstrates a driven and results-oriented personality.
Excellent communication and networking skills.
Engaged, self-motivated, and adaptable in approach.
Strong organisational and planning abilities.
Effective verbal and written communication skills.
Fluency in German, with very good proficiency in English.
Optional: Experience with technical systems such as CCTV, access control, and intrusion detection systems.
Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary
#LI-3da9