Beschreibung

You will drive offensive security efforts by coordinating complex penetration tests and TIBER-EU activities, ensuring every vulnerability is identified, tracked, and effectively resolved.

Anforderungen

• •Degree in Computer Science, Information Security, or equivalent experience
• •3-6 years of IT security experience
• •Understanding of web application and API security
• •Knowledge of penetration testing methodologies
• •Experience with Jira or ServiceNow
• •Excellent Python automation and tooling skills
• •Experience with HashiCorp Vault and automation
• •Experience with IBM PAM or comparable solutions
• •Excellent organisational and prioritisation skills
• •High quality standards for documentation
• •Clear and confident communication skills
• •Hands-on mindset and analytical perspective
• •Professional English proficiency; German is advantageous
• •Ability to start immediately

Aufgaben

• •Lead scoping discussions for internal and external penetration tests
• •Define objectives, rules of engagement, and technical prerequisites
• •Evaluate vendor proposals for methodology, quality, and cost
• •Identify gaps in vendor offerings and recommend selections
• •Review penetration test reports for technical accuracy and evidence
• •Ensure proper severity scoring and actionable remediation guidance
• •Coordinate finding clarifications with external vendors
• •Manage the vulnerability lifecycle using Jira and ServiceNow
• •Track, prioritize, and escalate overdue security items
• •Monitor remediation progress and report on key metrics
• •Provide technical guidance for interpreting security results
• •Perform internal retesting to validate fix effectiveness
• •Contribute to root cause analysis for future prevention
• •Support TIBER-EU engagements and post-assessment tracking
• •Deploy deception technologies to detect early attacker behavior
• •Enhance assessment standards, checklists, and security processes

Tools & Technologien