GE VernovaRemote
Principal Product Security Incident Responder
United States
Full Time
2 hours ago
$147,000 - $245,000 USD
No Visa Sponsorship
Key skills
Cyber SecurityAILeadership
About this role
Role Overview
- Lead PSIRT efforts across the business, reporting directly to the VP of Product Cybersecurity
- Manage externally identified product vulnerabilities and incidents across GE Vernova’s business units
- Coordinate remediation and disclosure across multiple product lines
- Run the company’s CVE Numbering Authority (CNA) program
- Ensure compliance with EU CRA and other applicable regulatory reporting obligations
- Partner with the CISO’s CERT and business unit security teams
- Deploy AI-powered tooling to accelerate triage, automate vulnerability scoring, and scale PSIRT capacity
- Maintain policies, processes, and tools to triage, track, and resolve product vulnerabilities across all business units
- Manage end-to-end Coordinated Vulnerability Disclosure (CVD) ensuring alignment with industry standards
- Lead responses to product-related cybersecurity incidents at customer sites
- Define and report on PSIRT performance metrics for executive leadership and enterprise risk reviews
Requirements
- 8+ years of cybersecurity experience with deep expertise in PSIRT operations, vulnerability management, or product incident response in an industrial/energy context
- Proven experience leading a PSIRT function, including hands-on management of coordinated disclosure and customer-facing security incidents
- Experience engaging with law enforcement, government agencies, and national authorities regarding sensitive cybersecurity incidents
- Deep familiarity with CVE, CVSS, CWE, and standards like ISO/IEC 29147/30111
- Bachelor’s degree in a technical discipline
- Direct experience with GE Vernova products or equivalent OT/industrial energy systems (preferred)
- Familiarity with IEC 62443 security standards and energy-sector ISACs (e.g., E-ISAC) (preferred)
- Experience building or scaling a PSIRT function from the ground up (preferred)
- Certifications such as CISSP, GCIH, GICSP, or equivalent (preferred)
- Advanced degree in Cybersecurity, Computer Science, or Engineering (preferred)
Tech Stack
- Cyber Security
Benefits
- medical, dental, vision, and prescription drug coverage
- access to Health Coach from GE Vernova, a 24/7 nurse-based resource
- access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services
- GE Vernova Retirement Savings Plan
- tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions
- access to Fidelity resources and financial planning consultants
- tuition assistance
- adoption assistance
- paid parental leave
- disability benefits
- life insurance
- 12 paid holidays
- permissive time off