difesa GmbH & Co. KG
Offensive Security (Senior) Engineer(m/w/x)
Vollzeitmit HomeofficeSenior
München
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
NEneoshare AG
Head of Offensive & Defensive Security(m/w/x)
München, Frankfurt am Main, Berlin
Vollzeitmit HomeofficeSenior
Nejo KI-Zusammenfassung
Leading Red/Blue Teams, driving penetration testing for an AI-First SaaS platform in project/real estate financing. Proven hands-on experience leading Red/Blue Team operations in regulated SaaS/fintech environments required. Dog-friendly offices, 30 vacation days.
Anforderungen
- Several years of experience in product security or security engineering, ideally within regulated SaaS, fintech, or banking environments
- Proven hands-on experience leading Red Team and/or Blue Team operations, including penetration testing, threat hunting, and incident response
- Strong technical understanding of modern software architectures (cloud-native, containerized systems, CI/CD pipelines)
- Experience designing and implementing security processes (Secure SDLC, DevSecOps)
- Familiarity with regulatory frameworks (ISO 27001, BAIT, DORA, or equivalent)
- Ability to work structured and effectively across departments and with external auditors
- Fluent German (C2) and strong English skills (written and spoken)
- High willingness to travel
Aufgaben
- Lead, grow, and mentor Red and Blue Teams
- Foster a culture of adversarial thinking and security resilience
- Drive internal and external penetration testing programs
- Conduct penetration testing across infrastructure, applications, and cloud environments
- Oversee vulnerability assessments, threat intelligence, and security analyses
- Translate security findings into actionable remediation plans
- Expand and mature Red and Blue Team capabilities
- Implement new tooling, methodologies, and threat simulation frameworks
- Own technical and organizational aspects of product security
- Develop and implement security standards and processes
- Implement Secure SDLC and Threat Modeling
- Integrate security testing into CI/CD pipelines
- Build and lead a specialized Security Engineering team
- Define and implement additional defensive strategies
- Strengthen overall organizational security resilience
- Partner closely with Product Development
- Integrate security requirements early in development
- Negotiate remediation timelines for identified vulnerabilities
- Collaborate with Information Security, Data Protection, Compliance, and Legal teams
- Ensure platform-wide regulatory adherence
- Communicate and present security strategy, architecture, and assurance posture
- Present to customers, partners, regulators, and auditors
- Support onboarding of new banking partners
- Ensure platform security and stability meet required standards
- Strengthen visibility and authority of the security function
- Introduce and champion digital security tooling
- Enhance detection, response, and security operations
- Continuously raise the security bar across teams
- Provide security training and awareness
- Enforce security policies
Berufserfahrung
- ca. 4 - 6 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- Kubernetes
- CI/CD pipelines
- Secure SDLC
- DevSecOps
- ISO 27001
- BAIT
- DORA
Benefits
Lockere Unternehmenskultur
- International and inclusive team
- Modern and dog-friendly offices
Ergonomischer Arbeitsplatz
- Ergonomic offices
Fokus auf Nachhaltigkeit
- Green offices
Mehr Urlaubstage
- 30 vacation days
- Additional half-day off Christmas Eve
- Additional half-day off New Year's Eve
Flexibles Arbeiten
- Flexible working hours
- Hybrid work
Workation & Sabbatical
- Workation
Gesundheits- & Fitnessangebote
- Urban Sports/EGYM Club subsidy
Öffi Tickets
- Jobticket
Sonstige Vorteile
- JobRad
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens neoshare AG erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Noch nicht perfekt?
- NavVis
Senior Cloud Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen - EGYM
Application Security Engineer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenMünchen, Berlin - commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen, Berlin - Mobility Concept GmbH
Senior Information Security Officer(m/w/x)
Vollzeitmit HomeofficeSeniorOberhaching
NEneoshare AG
Head of Offensive & Defensive Security(m/w/x)
München, Frankfurt am Main, Berlin
Vollzeitmit HomeofficeSenior
Nejo KI-Zusammenfassung
Leading Red/Blue Teams, driving penetration testing for an AI-First SaaS platform in project/real estate financing. Proven hands-on experience leading Red/Blue Team operations in regulated SaaS/fintech environments required. Dog-friendly offices, 30 vacation days.
Anforderungen
- Several years of experience in product security or security engineering, ideally within regulated SaaS, fintech, or banking environments
- Proven hands-on experience leading Red Team and/or Blue Team operations, including penetration testing, threat hunting, and incident response
- Strong technical understanding of modern software architectures (cloud-native, containerized systems, CI/CD pipelines)
- Experience designing and implementing security processes (Secure SDLC, DevSecOps)
- Familiarity with regulatory frameworks (ISO 27001, BAIT, DORA, or equivalent)
- Ability to work structured and effectively across departments and with external auditors
- Fluent German (C2) and strong English skills (written and spoken)
- High willingness to travel
Aufgaben
- Lead, grow, and mentor Red and Blue Teams
- Foster a culture of adversarial thinking and security resilience
- Drive internal and external penetration testing programs
- Conduct penetration testing across infrastructure, applications, and cloud environments
- Oversee vulnerability assessments, threat intelligence, and security analyses
- Translate security findings into actionable remediation plans
- Expand and mature Red and Blue Team capabilities
- Implement new tooling, methodologies, and threat simulation frameworks
- Own technical and organizational aspects of product security
- Develop and implement security standards and processes
- Implement Secure SDLC and Threat Modeling
- Integrate security testing into CI/CD pipelines
- Build and lead a specialized Security Engineering team
- Define and implement additional defensive strategies
- Strengthen overall organizational security resilience
- Partner closely with Product Development
- Integrate security requirements early in development
- Negotiate remediation timelines for identified vulnerabilities
- Collaborate with Information Security, Data Protection, Compliance, and Legal teams
- Ensure platform-wide regulatory adherence
- Communicate and present security strategy, architecture, and assurance posture
- Present to customers, partners, regulators, and auditors
- Support onboarding of new banking partners
- Ensure platform security and stability meet required standards
- Strengthen visibility and authority of the security function
- Introduce and champion digital security tooling
- Enhance detection, response, and security operations
- Continuously raise the security bar across teams
- Provide security training and awareness
- Enforce security policies
Berufserfahrung
- ca. 4 - 6 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Deutsch – verhandlungssicher
- Englisch – verhandlungssicher
Tools & Technologien
- Kubernetes
- CI/CD pipelines
- Secure SDLC
- DevSecOps
- ISO 27001
- BAIT
- DORA
Benefits
Lockere Unternehmenskultur
- International and inclusive team
- Modern and dog-friendly offices
Ergonomischer Arbeitsplatz
- Ergonomic offices
Fokus auf Nachhaltigkeit
- Green offices
Mehr Urlaubstage
- 30 vacation days
- Additional half-day off Christmas Eve
- Additional half-day off New Year's Eve
Flexibles Arbeiten
- Flexible working hours
- Hybrid work
Workation & Sabbatical
- Workation
Gesundheits- & Fitnessangebote
- Urban Sports/EGYM Club subsidy
Öffi Tickets
- Jobticket
Sonstige Vorteile
- JobRad
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens neoshare AG erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Über das Unternehmen
neoshare AG
Branche
FinancialServices
Beschreibung
Das Unternehmen ist ein internationales Fintech-Unternehmen, das innovative End-to-End-Lösungen für die Digitalisierung und Verwaltung von Projekt- und Immobilienfinanzierungen anbietet.
Noch nicht perfekt?
- difesa GmbH & Co. KG
Offensive Security (Senior) Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen - NavVis
Senior Cloud Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen - EGYM
Application Security Engineer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenMünchen, Berlin - commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen, Berlin - Mobility Concept GmbH
Senior Information Security Officer(m/w/x)
Vollzeitmit HomeofficeSeniorOberhaching