Job Description
This is a remote position.
Role & Responsibilities
* Design, implement, and maintain security controls to protect enterprise systems, networks, and applications
* Monitor and respond to security incidents using SIEM/SOC tools, ensuring timely containment and remediation
* Conduct vulnerability assessments and risk analysis, coordinate patching and mitigation efforts
* Manage IAM solutions including user access reviews, MFA, RBAC, and privileged access
* Secure cloud environments (AWS/Azure/GCP) including IAM, network security, logging, and compliance controls
* Collaborate with DevOps teams to integrate DevSecOps practices into CI/CD pipelines
* Perform security audits and compliance checks aligned with ISO 27001, GDPR, and internal policies
* Maintain and improve incident response plans, playbooks, and disaster recovery procedures
* Analyze security logs, alerts, and forensic data to identify threats and improve detection rules
* Support penetration testing activities and validate remediation actions
* Prepare clear security documentation, reports, and risk assessments for stakeholders
* Stay up to date with emerging threats, vulnerabilities, and security best practices
-----------------------------------
Preferred Candidate Profile
* 4–5 years of hands-on experience in cybersecurity, information security, or SOC roles
* Strong understanding of network security, OS security (Linux/Windows), and cloud security concepts
* Practical experience with SIEM tools (Splunk, ELK, QRadar, Sentinel, etc.)
* Proven skills in vulnerability management, incident response, and threat analysis
* Experience securing cloud platforms (AWS/Azure preferred)
* Familiar with GDPR, ISO 27001, and security governance frameworks
* Working knowledge of DevSecOps, containers, and CI/CD security is a plus
* Scripting experience in Python, Bash, or PowerShell for automation
* Ability to work independently and collaboratively in cross-functional teams
* Strong analytical, problem-solving, and documentation skills
* English proficiency required; German (A2–B1) is an advantage
* Relevant certifications (CEH, CISSP, Security+, OSCP, Cloud Security certs) are a plus
Benefits
Statutory Benefits
These are legally mandated and apply to most full-time employees:
* Health Insurance (public or private option)
* Pension Contributions (state retirement system
* Long-term Care Insurance
* Accident Insurance
* Paid Sick Leave (100% salary for up to 6 weeks)
* Minimum 20 days paid annual leave (many companies offer more)
-----------------------------------
Work–Life Balance Benefits
Very important in German work culture:
* 25–30 days of paid vacation
* Public holidays (9–13 depending on state)
* Flexible working hours
* Remote / Hybrid work options
* Work-from-anywhere (EU) days
* Overtime compensation or time-off in lieu
-----------------------------------
Financial & Monetary Benefits
* Annual performance bonus
* Sign-on bonus
* Relocation allowance (very common for international hires)
* Cost-of-living adjustment (especially in Munich/Frankfurt)
* Company pension plan (bAV) – employer co-contribution
* Childcare allowance / family benefits
* Internet & home-office allowance
Requirements
1. Network Security – Firewalls, IDS/IPS, VPNs, TCP/IP 2. Operating Systems Security, Linux (hardening, logs, permissions), Windows (AD, GPOs, Defender, PowerShell) 3. Vulnerability Management, Scanning (Nessus, Qualys, OpenVAS), Risk assessment & remediation 4. Incident Response, Detection, containment, forensics basics, SIEM alerts handling 5. SIEM & Monitoring, Splunk / ELK / QRadar / Azure Sentinel 6. Identity & Access Management (IAM), RBAC, MFA, SSO, Privileged Access 7. Cloud Security, AWS / Azure / GCP security services, IAM, KMS, CloudTrail, Defender, Security Hub 8. Container & DevSecOps, Docker, Kubernetes security, CI/CD security (GitHub Actions, GitLab) 9. Infrastructure as Code (IaC) Security, Terraform, ARM templates