Manager role supporting Cybersecurity and Technology Risk Oversight Center of Excellence. Leading regulatory exams and audits while collaborating with cross - functional risk management teams.
About the role
- Senior Consultant Penetration Testing role executing penetration tests on web and mobile applications and conducting security assessments. Collaborating with clients to enhance IT security across various sectors.
Responsibilities
- Apply hacking skills in the form of web, mobile app and infrastructure penetration tests or Red Teaming projects — remotely and on client sites
- Explain test results in detailed project reports and persuade clients with recommendations to improve their IT security
- Continuously take on new topics and learn current technologies, contribute to the development of internal tools or systems, and explore new tactics, techniques and procedures (TTPs)
- Stay up to date through company-sponsored conferences, training, experiments, regular knowledge transfers and joint internal CTF and HackTheBox sessions
- Gain exposure to adjacent areas, such as incident response/forensics or configuration audits
- Propose ideas for new projects and make a tangible contribution to building and expanding our client relationships
Requirements
- Several years of experience and broad technical knowledge across different areas (e.g., how networks work, operating system fundamentals, cloud platforms, Active Directory, databases, firewalls, web technologies and their typical security issues)
- Experience working with intercepting proxies (e.g., Burp), C2 frameworks (e.g., Cobalt Strike), vulnerability scanners and common operating systems, plus a desire to quickly become familiar with new tools
- Routine in producing reports and presentations in German and in communicating content clearly
- University degree or professional experience in this field, relevant certifications, or self-taught expertise with the willingness to deepen subject-matter knowledge in this area
Benefits
- We subsidize not only your JobRad (company bike) but also your public transport (ÖPNV) ticket, saving both the environment and your wallet.
- We support your gym membership and preventive health care.
- We enable work–family balance according to your needs, including the option for mobile/remote working.
- We offer 30 days of vacation per year. With only one vacation day you can take off on Christmas Eve and New Year's Eve. If you need a longer break, we offer the option of a sabbatical.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Specialist protecting DSV Contract Logistics IT platforms. Manage cybersecurity risks and embed security into IT solutions while ensuring operational continuity.
Regional Security Manager responsible for security operations at EMEA Data Centers. Collaborating with cross - functional teams for compliance and incident management.
Chargé.e d’Etudes et Travaux en systèmes électromécaniques de sécurité at RATP Infrastructures. Responsible for ensuring technical compliance and supervising project activities on - site.
Technical lead for Ford’s EV charging and energy ecosystem. Partner with product teams to design security controls and develop requirements.
Senior Infrastructure Security Engineer handling cloud security and infrastructure lifecycle for Zocks, a fintech startup. Responsible for security initiatives and compliance readiness in a rapidly growing team.
Data Center Security Officer ensuring safety and security for data center clients through patrols and monitoring. Conducting reports and maintaining client security requirements.
Cybersecurity Specialist overseeing the protection of clients' technology systems and networks. Implementing cybersecurity policies and conducting evaluations against cyber threats in a supportive working environment.
Providing security incident management for industrial environments at Telefónica Tech. Utilizing various monitoring platforms to enhance security posture.
Senior Cybersecurity Incident Responder at ZEISS handling technical incident response activities. Collaborating with cyber defense teams to ensure effective incident management and resolution.