Role Summary

The Cybersecurity Manager will lead cybersecurity for VinRobotics across both robotic products and internal enterprise environments. This role is responsible for maintaining and operating a Robotics Cybersecurity Management System (R-CSMS) while also ensuring baseline security practices across corporate systems, networks, and infrastructure. This is a hands-on, middle management role requiring close collaboration with engineering, IT, and operations teams.

Key Responsibilities

- R-CSMS Development & Management – Establish and maintain the company’s cybersecurity management system across the product lifecycle, including risk management and engineering integration

- Product & Embedded Security – Work with engineering to define and implement security controls across hardware, firmware, software, and communications

- Vulnerability Management & Cyber Triage – Operate a centralized process to assess, prioritize, and track remediation of product and enterprise security issues

- Development & Release Integration – Ensure cybersecurity requirements are incorporated into design reviews, testing, and product release decisions

- Enterprise Security Oversight – Define and coordinate baseline security controls for internal systems (e.g., network security, endpoint protection, access control), working with IT and SOC teams

- Monitoring & Incident Coordination – Define logging and monitoring requirements and coordinate response to security incidents across both product and enterprise environments

- Supply Chain & Compliance Support – Define security expectations for suppliers and support alignment with applicable standards and regulatory requirements

Required Experience

- 5–8 years in cybersecurity, with experience spanning product security (IoT/OT) and/or enterprise security

- Experience working with embedded systems, firmware, or connected devices

- Working knowledge of enterprise security fundamentals (network security, identity/access management, endpoint security)

- Hands-on experience with:

• Threat modeling / risk assessment

• Vulnerability management

• Security testing or assessment

- Experience working cross-functionally with engineering and IT teams

Preferred Experience

- Familiarity with one or more frameworks/standards, such as:

• ISO/SAE 21434

• IEC 62443

• NIST Cybersecurity Framework

• ISO/IEC 27001

- Experience building or contributing to a product security program/security management

- Exposure to cloud/backend security and enterprise infrastructure security

Education & Training

- Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field

- Advanced degree is a plus, but not required if experience is strong

- Certifications such as CISSP, GIAC certifications (e.g., GICSP, GPEN), CEH etc. preferred

Key Skills

- Ability to balance product security depth with enterprise security oversight

- Practical, risk-based mindset (not purely compliance-driven)

- Ability to work directly with engineers and IT teams

- Strong communication - able to translate between technical teams and leadership

- Comfortable building processes and structure from scratch