Cloud Security Vulnerability Management Program Specialist ensuring secure configurations of cloud workloads. Focused on vulnerability management, monitoring, and risk remediation across environments at Bank of America.
About the role
- (Senior) Consultant Information Security designing customized ISMS solutions and technical measures at a hybrid cybersecurity firm. Collaborating with clients to enhance their security aspects in compliance with regulations.
Responsibilities
- You develop tailor-made ISMS solutions for our clients
- You create policies and practical, implementable security concepts
- You implement technical and organizational measures
- You lead engaging projects to comply with new regulatory requirements (e.g., NIS-2, DORA) and prepare our clients optimally for the future
- You support our clients in detecting threats early and in establishing processes for efficient IT risk management
- You conduct Business Impact Analyses
- You help our clients anchor information security as an integral part of their organization
- Together we look for projects that match your interests. You participate in choosing which client project you will work on.
Requirements
- Several years of practical experience in the field of information security
- Willingness to take responsibility and make decisions
- Enjoyment of personal development and continuous learning
- Strong ability to self-organize and plan work efficiently
- Strong interpersonal and leadership skills
- Experience applying standards and regulatory requirements (e.g., ISO 27001, BSI IT Baseline Protection) and adapting them to individual client needs
- We welcome the following skills from you; otherwise you will acquire them during onboarding: confident use of consulting methods such as time management, project and client management, and quality management
- Motivation to actively contribute to the further development of carmasec
- In-depth knowledge of regulatory standards and industry frameworks (e.g., NIS-2, DORA, BAIT/VAIT, MaRisk, TISAX, CRA)
- Ideally, professional experience in a consulting environment
Benefits
- Self-realization: Freedom to experiment, an open error culture, and the opportunity to help shape company structures are a given here.
- Mentorship: Our experienced colleagues support you in your personal and professional development.
- Flexible working hours: Work during your most productive hours and schedule private commitments flexibly. Overtime is compensated.
- Additional benefits: Choose from options such as a Germany job ticket, Urban Sports Club membership, childcare subsidy (Kitaplatz support), or a company bike (JobRad).
- Training and development: We invest in your growth through regular training and recognized certifications.
- Low travel requirements: We work remotely or from our offices in Cologne or Essen. On-site meetings at client locations are the exception.
- Team building: Our monthly Open Space is dedicated to collaborative work on current topics. Regular events (e.g., joint workation, summer party, or Christmas party) are planned and organized by the team.
- Workation: Combine work and travel or take an extended break as part of a sabbatical.
- Vacation: 30 days of vacation per year and special leave for significant life events.
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Security Architect delivering secure solutions for Defence and National Security at SiXworks. Supporting agile teams in technical projects like Kubernetes and security risk management.
SOC (L2) Security Specialist ensuring information security at Kyivstar. Responsibilities include analysis and monitoring of security incidents.
CIS Security Manager responsible for EID’s information security strategy and compliance. Ensuring protection of information assets and promoting security culture across the organization.
Cyber Security Subject Matter Expert at CACI supporting a new DoD contract. Working on cloud security with an emphasis on system security engineering and risk management.
Cybersecurity Engineer developing solutions for complex security challenges protecting data and networks. Implementing next generation security solutions for government and commercial clients in hands - on roles.
Information Security Manager responsible for security governance and risk management. Engaging with technical teams for compliance with security standards and best practices.
Security Access Control Specialist at AMERICAN SYSTEMS managing database queries, document processes, and security measures. Supporting federal government programs through effective security operations in McLean, VA.
Customer Support Coordinator delivering technical support for complex security solutions. Collaborating with internal teams and external stakeholders to resolve service incidents while ensuring high performance standards.
Site Security Specialist tasked with implementing security measures for client at Richmond site. Acting as point of contact for security team and client management.