Role Description We’re looking for an exceptional Head of Cyber Defense to join our growing global team at Mitiga. This is a senior player-coach role - combining deep technical expertise in cloud, SaaS and AI security with a strong customer-facing presence. You'll lead Mitiga's managed CDR service, drive intelligence-led threat hunting, and conduct forensic investigations across cloud, SaaS, AI and identity environments. Sitting within Engineering, you'll work closely with R&D and Product to drive automation and AI adoption, building detection and response capabilities that scale beyond manual operations. US-based leadership is intentional: Mitiga's enterprise customers require direct engagement, rapid escalation, and executive-level communication in their time zones. What You'll Do: - Managed CDR: Monitor, triage, and respond to detections across cloud, SaaS, AI and identity; own customer-facing communication during active events within defined SLAs; maintain 24/7 team readiness. - Threat Hunting & Research: Design and lead intelligence-driven proactive hunting campaigns (MITRE ATT&CK, CISA, vendor intel); translate findings into platform-native automated detections; contribute published research and threat reports. - Incident Response: Personally lead S1/S2 forensic investigations end-to-end: scoping, evidence collection, analysis using Mitiga's Helios AI platform, attribution, and executive-quality reporting. - Customer & Commercial Engagement: Serve as the primary technical authority for enterprise customers; support sales cycles, QBRs, and EBRs; surface field-observed detection gaps to Engineering with context and accountability. - Automation & AI: Identify toil across CDR, hunting, and IR workflows; partner with Engineering to systematically automate; champion agentic SOC tooling and LLM-assisted triage. - Team & Thought Leadership: Hire, develop, and retain a global team of 5 analysts, responders, and hunters; represent Mitiga at industry events; author blog posts and threat intelligence content grounded in real operational depth. Qualifications - 8+ years of hands-on experience in cloud incident response, threat hunting, or security operations. - Deep cloud and SaaS expertise: AWS, Azure, GCP, Salesforce, GitHub, Okta, Microsoft 365, Google Workspace. - Strong command of attacker TTPs (MITRE ATT&CK for Cloud/SaaS), forensic analysis, and log-based investigation methodology. - Experience designing detection logic, hunting playbooks, or automation workflows — not only executing them. - Proven track record of direct, high-quality customer engagement with both technical practitioners and C-suite stakeholders. - Experience managing and mentoring a team; ability to build operational process and culture from an early foundation. Requirements - Conference presentations, published research, or media coverage in cloud/AI/SaaS security. - Hands-on experience with Python, KQL, SPL, or Databricks for investigative data analysis. - Experience implementing AI-assisted tooling or agentic workflows in a security operations context. - Background working within or alongside a high-growth security vendor. Benefits - Benefits package including health insurance (medical, dental, vision). - 401k plan with match. - Unlimited PTO. - Cell phone charges reimbursement. - Top-of-the-line equipment. - And more. Company Description Mitiga preemptively detects and stops attacks before damage is done. Mitiga moves your security beyond configuration-focused prevention. In today’s cloud-first, AI-driven world, attackers inevitably get in. Mitiga promptly stops them. Our platform connects Cloud, SaaS, AI, and Identity into one panoramic forensic system that gives SecOps total awareness, attack decoding, and autonomous containment. The result: attacks stop mid-flight, investigations are instant, and impact disappears. We replace the false promise of “zero breach” with a promise we can keep - Zero Impact. When attackers get in, Mitiga ensures they get nothing.

Join the Digital Career Institute & Social Impact School Das Digital Career Institute (DCI) ist einer der führenden Anbieter für digitale Weiterbildungen in Deutschland. Wir helfen Menschen, neue berufliche Wege zu gehen – und vernetzen Bildung, Arbeitsmarkt und Unternehmen. Du bist Experte im Sicherheitsgewerbe und hast Freude daran, dein Wissen an angehende Sicherheitskräfte weiterzugeben? Wir suchen dich, um unsere Teilnehmenden sicher durch die Sachkundeprüfung nach §34a GewO zu führen. Deine Aufgaben - Durchführung von Online-Live-Sessions zur gezielten Vorbereitung auf die Sachkundeprüfung gemäß §34a GewO (Fokus: Recht der öffentlichen Sicherheit, Gewerberecht, BGB, Strafrecht) - Methodische Schulung der Teilnehmenden hinsichtlich aller relevanten schriftlichen und mündlichen IHK-Prüfungsanforderungen - Anwendung digitaler Vermittlungsmethoden zur verständlichen Darstellung komplexer Rechtsgrundlagen und praktischer Sicherheits-Szenarien - Kontinuierliche Evaluation der Lernergebnisse sowie eigenständige Optimierung der digitalen Lehrformate - Individuelle fachliche Begleitung, Prüfungsvorbereitung und Motivierung der Lernenden über die gesamte Kursdauer der Sicherheits-Weiterbildung Deine Skills - Erfolgreicher Abschluss der Sachkundeprüfung nach §34a GewO (oder höherwertig, z. B. Fachkraft für Schutz und Sicherheit) sowie mehrjährige einschlägige Praxiserfahrung - Idealerweise Nachweis pädagogischer Vorerfahrung in der Erwachsenenbildung oder im Bereich der Sicherheitsausbildung - Sicherer Umgang mit digitalen Tools und ausgeprägte Affinität zum Remote-Arbeiten - Sehr gute Deutsch- und Englischkenntnisse - Hohe pädagogische Kompetenz, didaktisches Geschick, Geduld und Begeisterung für die Arbeit mit Menschen in Weiterbildung Deine Benefits - Kein Arbeitsweg dank 100 % Homeoffice - Unterricht nach deinem persönlichen Stil gestalten, Hauptsache lernförderlich und angenehm für die Teilnehmenden - Ein Job mit Social Impact, der das Berufsleben von Menschen nachhaltig beeinflusst - Arbeiten in einem modernen digitalen Unternehmen, in dem KI, Gleitzeit, Workation und Homeoffice zum Standard gehören - Eine Kultur der Offenheit, in der unterschiedliche Perspektiven nicht nur willkommen sind, sondern bereits von Anfang an Teil unseres Auftrags waren

Role Description We are currently looking for an experienced Senior Security Specialist (m/w/d) to drive our Securities Finance Trading & Collateral technology and services roadmap to the global Securities Finance & Collateral industry. Working closely with the Product Development management to deliver on our mission to deliver future state cloud-native solution together with simplifying the integrations with open API’s and provide seamless integrations. As a Senior Security Specialist, you are part of the Securities Finance Trading and Collateral core development team. You will be responsible for ensuring the security aspects of the platform. You will be required to investigate any potential security finding by automated tools, based on dependencies as well as other sources such as penetration testing. You will be interacting with central security teams to explain false positives and ensure vulnerabilities are resolved. Qualifications - At least 7+ year’s hands-on professional experience in the Java enterprise environment. - Experience building enterprise financial solutions. - Experience with Agile and test-driven development. - Experience in working in a distributed global environment. - Experience in investigating and resolving security related findings. - Experience in upgrading and working with 3rd party open source dependencies. - Very good expertise in Java SE/JEE, TypeScript. - Very good expertise in software design patterns, integration patterns and enterprise architectural concepts. - Hands-on experience with Spring Framework and Middleware, JMS and JPA/Hibernate. - Good understanding of web frontend technologies: Angular v2+, Observables, Redux. - Experience integrating with Identity and Access Management (IAM) systems, with good understanding of concepts like OAuth, OpenID Connect and Single Sign-on. - Adapting and integrating open-source frameworks and technologies. - Very strong communication skills and fluent in English. - Team player, Willingness to take responsibility. - Passionate about software development. Requirements - Investigate and resolve security findings across multiple versions of SFTC. - Ensure false positives are properly explained to central security team and approved as false positives. - Upgrade dependencies both Java as well as Typescript/Javascript libraries. - Resolve security vulnerabilities in no longer supported open source libraries. - Ensure any security related changes will not break existing functionality. Benefits - A varied, responsible job with a wide range of opportunities to contribute and to be innovative. - A modern, international working environment in committed and motivated teams.

• Support the OLX Security Operations Center (SOC) by assisting with the incident response and its lifecycle • Contribute to incident response training for the organization • Assist in integrating our platforms and services with the SOC • Participate in “protect, detect, and respond” engineering tasks • Participate in Threat Hunting tasks • Participate in improving our threat intelligence system • Help develop, improve, and manage alerts of automated escalation processes • Work on custom integrations, which may require development skills in Python and Bash in containerized environments such as Kubernetes • Collaborate with other teams to streamline security across OLX, including Tech, Privacy, and Compliance teams.