Cyber Security Specialist for Riachuelo's Red Team overseeing offensive security projects. Leading cyber threat intelligence and collaborating with internal teams on security improvements.
About the role
- IT-Security Manager protecting IT infrastructure and ensuring resilience for the energy transition. Focused on cloud, network security, and compliance with key standards.
Responsibilities
- Responsibility for IT security
- Protection of IT infrastructure, in particular cloud, network and critical production systems
- Ensuring endpoint, application and identity security (IAM, MFA, Conditional Access)
- Implementation of Zero-Trust architectures and network segmentation
- Compliance with standards such as ISO 27001 and legal requirements (KRITIS, NIS2)
- Development and implementation of comprehensive technical security concepts and policies
- Conducting security architecture reviews for new projects and technologies
- Introduction and maintenance of KPIs to measure the security posture
- Proactive identification, assessment and remediation of IT security risks
- Continuous monitoring and response to security incidents
- Advising internal departments on security matters related to cloud, IoT and new software solutions
- Organizing and tracking actions arising from ISO 27001 audits
Requirements
- Degree in IT, IT security or equivalent qualification — alternatively several years of relevant professional experience with appropriate further training
- Several years of experience in technical IT security, ideally in the energy sector, critical infrastructures or other regulated industries
- Solid know-how in network security, cloud security (Microsoft Azure), Zero-Trust architectures and modern security solutions
- Experience with sovereign cloud solutions, data sovereignty and data residency
- Practical experience in Identity & Access Management (IAM, MFA, Conditional Access) and working with SIEM/SOC environments
- Knowledge of current standards and methods (ISO 27001, BSI IT-Grundschutz, NIS2, KRITIS) — certifications such as CISSP or Microsoft Security are an advantage
- Analytical and conceptual thinking, solution-oriented and structured way of working
- Strong communication skills and enjoyment of interdisciplinary collaboration
- Very good German and English language skills
- Driver’s license and mobility required
Benefits
- 30 days of annual leave per year (additionally off on 24th and 31st December)
- Overtime tracking that can be converted into flex-time days
- Individual development opportunities and training programs
- Collegial, first-name culture and commitment to diversity
- Employee discounts via the Corporate Benefits platform
- Monthly benefits budget of €50, flexibly usable for sports, shopping or mobility
- Access to the company health insurance fund BKK EWE
- Company pension plan with salary conversion including a 20% employer contribution
- Various leave options through time-value account management (e.g. sabbatical, part-time)
- Significant opportunities for participation and welcome contribution of employee ideas
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Engineer at PagBank ensuring secure network and application exposure strategies. Leading technical initiatives in firewalls, WAF/CDN, and advanced troubleshooting.
Technology and Cybersecurity Director leading the commercialization of cybersecurity consulting services at Emergent. Bridging technical teams and sales organizations to drive pipeline and revenue growth.
Engineer managing and supervising the Safety team at Localiza&Co in São Paulo. Overseeing safety policies and ensuring compliance with health and safety standards.
Network Security Analyst configuring and maintaining Firewall solutions at Vision Cybersecurity. Collaborating with teams to manage security incidents and protect network integrity.
Technical Leader at VISION Cybersecurity overseeing SOC operations and guiding security investigations. Responsible for improving detection mechanisms and collaboration with security engineering teams.
Security & Compliance Manager leading Tagup’s security and compliance efforts in defense technology. Engaging in national security initiatives and driving compliance with federal standards.
Security Researcher specializing in Windows and macOS threat detection for an AI - powered security platform. Conducting research and developing detections for threats, malware, and vulnerabilities.
Information Security Specialist supporting operational execution of ISMS lifecycle tasks in Budapest. Collaborating with stakeholders for risk assessment and management activities.
Information Security Specialist responsible for ISMS lifecycle tasks at ALDI. Collaborating with stakeholders on risk assessment and treatment activities while ensuring effective governance.