difesa GmbH & Co. KG
Offensive Security (Senior) Engineer(m/w/x)
Full-timeWith HomeofficeSenior
München
New Job?Nejo!
The AI Job Search Engine
NEneoshare AG
Head of Offensive & Defensive Security(m/w/x)
München, Frankfurt am Main, Berlin
Full-timeWith Home OfficeSenior
Nejo AI Summary
Leading Red/Blue Teams, driving penetration testing for an AI-First SaaS platform in project/real estate financing. Proven hands-on experience leading Red/Blue Team operations in regulated SaaS/fintech environments required. Dog-friendly offices, 30 vacation days.
Requirements
- Several years of experience in product security or security engineering, ideally within regulated SaaS, fintech, or banking environments
- Proven hands-on experience leading Red Team and/or Blue Team operations, including penetration testing, threat hunting, and incident response
- Strong technical understanding of modern software architectures (cloud-native, containerized systems, CI/CD pipelines)
- Experience designing and implementing security processes (Secure SDLC, DevSecOps)
- Familiarity with regulatory frameworks (ISO 27001, BAIT, DORA, or equivalent)
- Ability to work structured and effectively across departments and with external auditors
- Fluent German (C2) and strong English skills (written and spoken)
- High willingness to travel
Tasks
- Lead, grow, and mentor Red and Blue Teams
- Foster a culture of adversarial thinking and security resilience
- Drive internal and external penetration testing programs
- Conduct penetration testing across infrastructure, applications, and cloud environments
- Oversee vulnerability assessments, threat intelligence, and security analyses
- Translate security findings into actionable remediation plans
- Expand and mature Red and Blue Team capabilities
- Implement new tooling, methodologies, and threat simulation frameworks
- Own technical and organizational aspects of product security
- Develop and implement security standards and processes
- Implement Secure SDLC and Threat Modeling
- Integrate security testing into CI/CD pipelines
- Build and lead a specialized Security Engineering team
- Define and implement additional defensive strategies
- Strengthen overall organizational security resilience
- Partner closely with Product Development
- Integrate security requirements early in development
- Negotiate remediation timelines for identified vulnerabilities
- Collaborate with Information Security, Data Protection, Compliance, and Legal teams
- Ensure platform-wide regulatory adherence
- Communicate and present security strategy, architecture, and assurance posture
- Present to customers, partners, regulators, and auditors
- Support onboarding of new banking partners
- Ensure platform security and stability meet required standards
- Strengthen visibility and authority of the security function
- Introduce and champion digital security tooling
- Enhance detection, response, and security operations
- Continuously raise the security bar across teams
- Provide security training and awareness
- Enforce security policies
Work Experience
- approx. 4 - 6 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- Kubernetes
- CI/CD pipelines
- Secure SDLC
- DevSecOps
- ISO 27001
- BAIT
- DORA
Benefits
Informal Culture
- International and inclusive team
- Modern and dog-friendly offices
Ergonomic Workplace
- Ergonomic offices
Sustainability Focus
- Green offices
More Vacation Days
- 30 vacation days
- Additional half-day off Christmas Eve
- Additional half-day off New Year's Eve
Flexible Working
- Flexible working hours
- Hybrid work
Workation & Sabbatical
- Workation
Healthcare & Fitness
- Urban Sports/EGYM Club subsidy
Public Transport Subsidies
- Jobticket
Other Benefits
- JobRad
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of neoshare AG and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Not a perfect match?
- NavVis
Senior Cloud Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorMünchen - EGYM
Application Security Engineer(m/w/x)
Full-timeWith HomeofficeExperiencedMünchen, Berlin - commercetools
Principal Engineer, Product Security(m/w/x)
Full-timeWith HomeofficeSeniorMünchen, Berlin - Mobility Concept GmbH
Senior Information Security Officer(m/w/x)
Full-timeWith HomeofficeSeniorOberhaching
NEneoshare AG
Head of Offensive & Defensive Security(m/w/x)
München, Frankfurt am Main, Berlin
Full-timeWith Home OfficeSenior
Nejo AI Summary
Leading Red/Blue Teams, driving penetration testing for an AI-First SaaS platform in project/real estate financing. Proven hands-on experience leading Red/Blue Team operations in regulated SaaS/fintech environments required. Dog-friendly offices, 30 vacation days.
Requirements
- Several years of experience in product security or security engineering, ideally within regulated SaaS, fintech, or banking environments
- Proven hands-on experience leading Red Team and/or Blue Team operations, including penetration testing, threat hunting, and incident response
- Strong technical understanding of modern software architectures (cloud-native, containerized systems, CI/CD pipelines)
- Experience designing and implementing security processes (Secure SDLC, DevSecOps)
- Familiarity with regulatory frameworks (ISO 27001, BAIT, DORA, or equivalent)
- Ability to work structured and effectively across departments and with external auditors
- Fluent German (C2) and strong English skills (written and spoken)
- High willingness to travel
Tasks
- Lead, grow, and mentor Red and Blue Teams
- Foster a culture of adversarial thinking and security resilience
- Drive internal and external penetration testing programs
- Conduct penetration testing across infrastructure, applications, and cloud environments
- Oversee vulnerability assessments, threat intelligence, and security analyses
- Translate security findings into actionable remediation plans
- Expand and mature Red and Blue Team capabilities
- Implement new tooling, methodologies, and threat simulation frameworks
- Own technical and organizational aspects of product security
- Develop and implement security standards and processes
- Implement Secure SDLC and Threat Modeling
- Integrate security testing into CI/CD pipelines
- Build and lead a specialized Security Engineering team
- Define and implement additional defensive strategies
- Strengthen overall organizational security resilience
- Partner closely with Product Development
- Integrate security requirements early in development
- Negotiate remediation timelines for identified vulnerabilities
- Collaborate with Information Security, Data Protection, Compliance, and Legal teams
- Ensure platform-wide regulatory adherence
- Communicate and present security strategy, architecture, and assurance posture
- Present to customers, partners, regulators, and auditors
- Support onboarding of new banking partners
- Ensure platform security and stability meet required standards
- Strengthen visibility and authority of the security function
- Introduce and champion digital security tooling
- Enhance detection, response, and security operations
- Continuously raise the security bar across teams
- Provide security training and awareness
- Enforce security policies
Work Experience
- approx. 4 - 6 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- German – Business Fluent
- English – Business Fluent
Tools & Technologies
- Kubernetes
- CI/CD pipelines
- Secure SDLC
- DevSecOps
- ISO 27001
- BAIT
- DORA
Benefits
Informal Culture
- International and inclusive team
- Modern and dog-friendly offices
Ergonomic Workplace
- Ergonomic offices
Sustainability Focus
- Green offices
More Vacation Days
- 30 vacation days
- Additional half-day off Christmas Eve
- Additional half-day off New Year's Eve
Flexible Working
- Flexible working hours
- Hybrid work
Workation & Sabbatical
- Workation
Healthcare & Fitness
- Urban Sports/EGYM Club subsidy
Public Transport Subsidies
- Jobticket
Other Benefits
- JobRad
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of neoshare AG and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
About the Company
neoshare AG
Industry
FinancialServices
Description
Das Unternehmen ist ein internationales Fintech-Unternehmen, das innovative End-to-End-Lösungen für die Digitalisierung und Verwaltung von Projekt- und Immobilienfinanzierungen anbietet.
Not a perfect match?
- difesa GmbH & Co. KG
Offensive Security (Senior) Engineer(m/w/x)
Full-timeWith HomeofficeSeniorMünchen - NavVis
Senior Cloud Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorMünchen - EGYM
Application Security Engineer(m/w/x)
Full-timeWith HomeofficeExperiencedMünchen, Berlin - commercetools
Principal Engineer, Product Security(m/w/x)
Full-timeWith HomeofficeSeniorMünchen, Berlin - Mobility Concept GmbH
Senior Information Security Officer(m/w/x)
Full-timeWith HomeofficeSeniorOberhaching