Regular execution of vulnerability and penetration tests in our IT infrastructure and application environments (on-premises – on-demand)
Remediation and follow-up of findings from vulnerability and organizational analyses in coordination with the relevant business stakeholders
Taking on project management responsibilities for the introduction of new security-relevant IT technologies (e.g., vulnerability management, pentesting solutions)
Proactive IT security monitoring and ensuring delivery of security alerts and recommended actions to affected user groups
Creation and maintenance of IT security and incident response/contingency plans, as well as the associated processes
Participation in IT projects and daily IT operations with a focus on IT security design and implementation support
Ongoing coordination of all measures and activities with our Information Security Officer (ISO) and IT management
Point of contact for internal employees on IT security topics

University degree or vocational training in an IT field with at least 4 years of practical professional experience in complex IT environments
Very good knowledge of (technical) IT security in current Microsoft server and client technologies (on-premises/on-demand), including network protocols (TCP/IP, LAN/WAN, routing and RAS)
Solid knowledge of the operation and deployment of IT security protocols (MFA, RSA, SSL, VPN)
Good knowledge of IT security standards such as the ISO/IEC 27000 family (ISO270xx) and BSI IT-Grundschutz is a plus
Strong competence in structured project handling of complex topics and systematic documentation of results
Ability to work independently and in a goal-oriented manner, with strong analytical thinking and problem-solving skills
Very good German language skills, both written and spoken

IT Security Engineer

Key skills