As a Senior Cybersecurity Engineer, you design and develop technical and organizational IT security standards for the MERKUR Group in close coordination with the Group CISO.
You analyze, assess and handle security incidents and take on responsibilities in incident response and threat modeling.
You also perform vulnerability analyses, penetration tests and security assessments and derive appropriate remediation measures.
You build security monitoring and detection use cases and continuously further develop them.
In addition, you advise MERKUR subsidiaries on technical IT security solutions and assess new technologies from a security perspective.
You support the MERKUR Security Community and serve as a direct reporting line to the Group CISO.
We want to promote the “serious game” approach and encourage participation in formats such as Capture the Flag to foster security know-how.

Completed degree in Computer Science, IT Security or a comparable qualification
Alternatively, a relevant vocational qualification (e.g. IT specialist for system integration) with corresponding professional experience
Several years of professional experience in cybersecurity / IT security
Very good knowledge in several of the following areas: security architectures, DevSecOps, network and perimeter security, endpoint security, cloud security, identity & access management, SIEM/SOC
Experience in incident response, threat analysis and vulnerability management
Strong technical understanding, analytical mindset and a pronounced hands-on mentality
Independent, structured and solution-oriented way of working as well as willingness to travel of approx. 10–20%

Senior Cybersecurity Engineer

Key skills