Your Key Responsibilities
Operational Information Security & Implementation
-
Implement and continuously improve technical security measures based on the existing security strategy.
-
Support the identification, assessment, and mitigation of security risks.
-
Implement and technically embed security policies, standards, and processes.
-
Assist with audits and compliance requirements (e.g., ISO 27001 and corporate security standards).
Coordination & Management of Security Operations
-
Coordinate and manage external security service providers (nationally and internationally).
-
Track vulnerabilities, remediation activities, and security findings.
-
Support Incident Response, Disaster Recovery, and Business Continuity activities.
-
Analyze and further develop:
-
Backup and recovery concepts
-
Patch and update management processes
-
Identity and Access Management (IAM) concepts
-
Support and implement security-related projects.
Technical Security Operations
-
Support the operation and optimization of:
-
Endpoint Security / EDR solutions
-
Firewall and network security technologies
-
Microsoft 365 security services
-
Analyze and assess security alerts, logs, and suspicious activities.
-
Assist in the investigation of security incidents (e.g., originating from EDR, SIEM, or Microsoft 365 environments).
-
Support system and infrastructure hardening initiatives.
Collaboration & Advisory
-
Advise internal departments on security-related matters.
-
Support the secure introduction of new systems and business processes.
-
Promote security awareness throughout the organization.
-
Act as an interface between IT, business departments, and external partners.
What You Bring
-
Completed vocational training or a university degree in Computer Science, Information Security, or a comparable qualification.
-
Experience in IT infrastructure, system administration, or IT security.
-
Fluent English communication skills (spoken and written).
Preferred Knowledge
-
Network and firewall technologies.
-
Windows, Active Directory, Microsoft 365, and Microsoft Entra.
-
Solid understanding of modern security domains, including:
-
Endpoint Security
-
Identity and Access Management (IAM)
-
Vulnerability Management
-
Backup and Recovery concepts
Additional Qualifications That Will Strengthen Your Profile
Initial Exposure To
-
BSI IT-Grundschutz
-
ISO 27001
-
NIST
-
CMMC
Experience With
-
EDR/XDR solutions (e.g., CrowdStrike, SentinelOne)
-
NDR solutions (e.g., Darktrace, ExtraHop)
-
Firewalls (e.g., Sophos)
-
SIEM platforms
-
Cloud Security
-
Collaboration with external service providers
Personal Attributes
-
Structured and pragmatic way of working.
-
Hands-on mentality with a strong focus on execution rather than theory.
-
Ability to communicate technical topics clearly to different audiences.
-
Initiative and a strong sense of ownership.
-
Team-oriented mindset and strong communication skills.
-
Solution-focused approach to problem-solving.
What We Offer
-
Flexible working hours.
-
30 days of annual leave.
-
Attractive compensation package, including additional bonus payments.
-
Tax-free employee benefits provided through a voucher card.
-
Employer contribution to capital-forming benefits (Vermögenswirksame Leistungen).
-
Regular company events.
-
Individual training and professional development opportunities.
-
A modern working environment with exciting challenges and short decision-making processes.
Interested?
Are you ready for a new challenge and see yourself in this role?
We look forward to receiving your complete application documents via email at [email protected].