CRA Compliance Technical Lead - Cork, Ireland
Posted 8 days 15 hours ago by Qualcomm
Company: QT Technologies Ireland Limited
Job AreaEngineering Group, Engineering Group > Security Engineering
General SummaryAs a CRA Compliance Technical Lead, you will play a critical role in helping ensure our products align with Cyber Resilience Act (CRA) expectations and broader product security compliance obligations. This role is well suited for a hands on technical security and compliance leader who can translate evolving regulatory requirements into practical, scalable engineering actions and automated compliance capabilities across product development, vulnerability detection, vulnerability management, documentation, evidence collection, reporting, and governance workflows.
Your primary focus will be technically leading the establishment, maintenance, and day to day operation of compliance automation for CRA related requirements.
Key Responsibilities- Work closely with the product security organization, standards organization, engineering and release management teams to interpret partially defined or changing requirements, map them to existing technical processes, identify gaps, and drive automated, repeatable mechanisms that help teams execute and demonstrate compliance over time.
- Help establish and maintain a structured compliance framework for product security governance, with a strong emphasis on automating evidence collection, control monitoring, and documentation.
- Translate regulatory language into actionable engineering, operational, and automation requirements; partner with technical teams to embed compliance expectations into the product lifecycle; collaborate with stakeholders to improve traceability between requirements and implemented controls, automated checks, and retained evidence.
- Work extensively with compliance artifacts and supporting systems, including risk registers, issue trackers, vulnerability records, SBOM related materials, and reporting dashboards.
- Help build, adapt, and operate scalable automation based mechanisms for collecting, organizing, validating, and reporting evidence that demonstrates compliance readiness.
- Provide technical direction across cross functional initiatives, influence priorities, and help drive consistency in how CRA compliance is interpreted and implemented across teams.
- Strong proven experience in cybersecurity engineering compliance, product security governance, security architecture, security program management, or related technical roles supporting regulated product development.
- Demonstrated understanding of the Cyber Resilience Act (CRA) and its implications for software and hardware products, secure development, and vulnerability detection and handling.
- Experience translating regulatory requirements into actionable technical requirements, engineering controls, automation requirements, and operational implementation guidance.
- Proven experience establishing, maintaining, and operating automation, integrations, and reporting mechanisms that support compliance, governance, or evidence collection.
- Proven ability to technically lead cross functional compliance initiatives, including driving execution through influence without direct authority.
- Strong interpersonal skills and the ability to coordinate work across multiple teams, build trust, follow up persistently, and get results from teams that do not report to the role.
- Familiarity with secure software development lifecycle practices and how security requirements are embedded into engineering workflows.
- Experience supporting vulnerability detection, vulnerability management, prioritization, remediation tracking, and related governance processes.
- Ability to define evidence requirements and manage compliance artifacts in a structured, audit ready manner.
- Exceptional written communication skills.
- Experience with product security compliance programs involving regulations or frameworks such as CRA, RED, NIS2, IEC 62443, ISO/IEC 27001, ISO/SAE 21434, or similar security focused requirements.
- Experience working with internal or external audits, conformity assessments, and regulator facing evidence preparation.
- Familiarity with issue tracking and documentation systems for compliance monitoring and reporting.
Cork is one of Ireland's major economic centres, offering a high quality of life and easy access to a wide range of international destinations via Cork Airport.
Equal OpportunitiesWe are an Equal Opportunity employer; all qualified applicants will receive consideration for employment without regard to race, colour, religion, sexual orientation, gender identity, national origin, disability, veteran status, or any protected classification.
Benefits- Salary, stock and performance related bonus
- Maternity/Paternity Leave
- Employee stock purchase scheme
- Matching pension scheme
- Education Assistance
- Relocation and immigration support (if needed)
- Life, Medical, Income and Travel Insurance
- Subsidised memberships for physical and mental well being
- Bicycle purchase scheme
- Employee run clubs, including running, football, chess, badminton and many more
- Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 6+ years of Software Engineering or related work experience.
- Master's degree in Engineering, Information Systems, Computer Science, or related field and 5+ years of Software Engineering or related work experience.
- PhD in Engineering, Information Systems, Computer Science, or related field and 4+ years of Software Engineering or related work experience.
- 3+ years of work experience with a programming language such as C, C++, Java, Python, etc.
References to a particular number of years experience are for indicative purposes only. Applications from candidates with equivalent experience will be considered, provided that the candidate can demonstrate an ability to fulfill the principal duties of the role and possesses the required competencies.