EU Product Security Officer, Regulatory & Standards Engagement (m/w/d)
Emerson
Description
As an EU Product Security Officer (m/w/d), you will be our product cybersecurity authority in the European Union — operating as a recognized expert with enterprise-wide scope, final cybersecurity sign-off authority across multiple product portfolios, and the public face of Emerson within EU cybersecurity regulatory and standards bodies.
You will own and drive product cybersecurity outcomes for EU-relevant products and programs by embedding secure development practices into product lifecycles, leading vulnerability readiness and response, and ensuring evidence-based compliance with the EU Cyber Resilience Act, NIS-2, and other evolving cybersecurity regulations. Critically, you will represent Emerson and Measurement Solutions in EU regulatory, standards, and working-group forums — including CENELEC, DKE, ZVEI, and ETSI — translating external requirements into practical internal guidance, shaping harmonized standards on Emerson's behalf, and influencing the trajectory of OT cybersecurity policy across Europe.
This role is positioned at Emerson's Distinguished Technologist level and is open to senior practitioners who have already established credibility within the European industrial cybersecurity community. Join us in safeguarding our products and advancing Emerson's commitment to cybersecurity excellence.
In This Role, Your Responsibilities Will Be:
- Serve as Emerson's senior representative in EU cybersecurity regulatory and standards forums contributing to standards drafts, position papers, and harmonized standard development under the EU Cyber Resilience Act (CRA).
- Provide final cybersecurity sign-off authority on EU product release decisions and serve as a governance member in product gate reviews across multiple Measurement Solutions product companies.
- Drive the secure development lifecycle (SDL) — including security requirements definition, threat modeling, secure design reviews, and release readiness criteria — across multiple EU-based product companies operating under diverse regulatory regimes.
- Translate evolving EU cybersecurity legislation into actionable internal product security requirements, ensuring product teams operate from a unified compliance baseline rather than interpreting regulation independently.
- Own software supply chain security strategy and execution, third-party component risk assessment, supplier assurance, and vulnerability impact analysis aligned with emerging regulatory requirements.
- Apply deep expertise in product and embedded security fundamentals — authentication, cryptography, secure update mechanisms, and system hardening — to guide architectural and design decisions across diverse product technologies.
- Mentor and coach Product Security Leads, engineers, and cross-functional partners across the EU portfolio; serve as a trusted technical authority to product management, engineering leadership, and legal/compliance teams.
- Anticipate future regulatory and threat-landscape shifts; recommend strategic investments in cybersecurity tooling, process, and capability that position Emerson ahead of compliance deadlines and competitive pressure.
- Maintain public technical visibility through publications, conference participation, working group leadership, and engagement with the broader European cybersecurity community where appropriate — building and protecting Emerson's reputation as a serious participant in Operational Technology cybersecurity. Develop and maintain product-level security documentation, compliance artifacts, and customer-facing cybersecurity materials that meet regulatory evidence requirements and customer expectations.
Who You Are:
You are a high‑performing individual contributor with a strong passion for cybersecurity. You enjoy understanding new technologies and how they should be governed throughout their lifecycle. You value exposure to diverse technologies and are proactive in researching and developing new skills as needed.