Role Description Our SOC team is expanding! We are looking for a Senior Security Analyst to lead our advanced investigation and threat intelligence workflows. This role is designed for a technical expert who thrives on complex incident response and proactive threat hunting. - Incident Response: Drive the end-to-end lifecycle of security incidents, from initial detection through to advanced containment and recovery. - Threat Intelligence: Drive the threat intelligence process by analyzing emerging trends and integrating external feeds into our detection logic. - Forensic Analysis: Perform deep-dive host and network forensics to identify root causes and persistence mechanisms. - Automation & Playbooks: Design and refine automated SOAR playbooks to increase the speed and consistency of our response. - Proactive Hunting: Execute hypothesis-driven threat hunts across our environments. - Technical Leadership: Act as an escalation point for complex alerts and mentor junior analysts on advanced investigative techniques. - Stakeholder Communication: Generate detailed incident reports and present findings to both technical teams and executive stakeholders, ensuring clarity on impact and resolution. Qualifications - Extensive hands-on SOC or incident response experience, including Tier 2 / Tier 3 responsibilities - Proficiency with SIEM/SOAR platforms, EDR tools, and forensic toolsets - Hands-on experience with AWS security controls and container security - Strong understanding of network protocols, endpoint security, and common attack vectors - Ability to use Python or similar scripting languages for security automation and data analysis - Relevant certifications such as GCIH, GCFA, CISSP, or equivalent are a plus - Excellent analytical mindset, attention to detail, and ability to thrive under pressure - Strong communication skills, capable of translating technical findings to non-technical audiences Benefits - Be part of one of the fastest-growing and most visible Fintech startups in Europe, creating innovative services that have a substantial impact on the lives of our customers - Work with an international, diverse, inclusive, and ever-growing team that loves creating the best products for our clients - Be productive with the latest hardware and tools - Learn and grow by joining our in-house knowledge sharing or career development sessions and spending your individual Education Budget - Learn and experience German culture first hand by joining our free German language classes - International relocation support is provided if required - Opportunity to work from abroad - Benefit from an attractive compensation package and from the company pension scheme - Monthly contribution of 50% for the ‘Deutschland Jobticket’ - Say goodbye to order commissions and say hello to your complimentary subscription of Scalable Capital's PRIME+ Broker - Enjoy flexible and discounted sports activities with Urban Sports Club

Role Description We are seeking a highly skilled and experienced Compliance Analyst to join our organization. As the Compliance Analyst, you will be responsible for managing our compliance program, ensuring adherence to applicable regulatory requirements, industry standards, and internal policies. You will play a pivotal role in developing and implementing compliance frameworks, managing compliance projects, and providing guidance to cross-functional teams. Reporting to the Senior Information Security Compliance Lead, you will contribute to the overall success of our organization by maintaining a culture of compliance and integrity. - Ensure adherence to all organizational compliance frameworks, regulations, and security guidelines. - Provide guidance and support in implementing controls and processes, promoting a culture of compliance throughout the organization. - Coordinate internal and external audits, serving as the primary point of contact and ensuring timely and accurate responses to audit requests. - Work closely with team members to ensure timely delivery of evidence requirements for compliance purposes. - Participate in both internal and external audits, answering questions, and showcasing the controls in place to meet compliance obligations. - Assist in implementing and using LogicGate as the organization's system of truth for GRC-related controls. - Collaborate with cross-functional teams, such as IT, legal, and Finance, to develop and maintain effective compliance programs aligned with various compliance frameworks and security guidelines. - Identify and assess compliance risks and develop strategies to mitigate them in line with applicable compliance frameworks and security guidelines. - Conduct regular reviews and evaluations of compliance controls, processes, and procedures to identify areas for improvement and ensure alignment with relevant compliance frameworks and security guidelines. - Stay up to date with regulatory changes, industry best practices, and evolving compliance requirements to ensure the organization's compliance strategies are current and effective. Qualifications - Proven experience working in a compliance or GRC role, preferably within a similar industry, with knowledge of various compliance frameworks and security guidelines. - Strong understanding of compliance frameworks, regulations, and security guidelines, including awareness of relevant laws and regulations such as Sarbanes-Oxley, NIST 800-171, ISO 27001, CMMC, Cyber Essentials, and Service Organizational Control. - Excellent organizational and time management skills with the ability to manage multiple tasks simultaneously and meet deadlines. - Strong analytical and problem-solving abilities. - Effective communication skills, both written and verbal, with the ability to communicate complex compliance concepts to diverse stakeholders. - Demonstrated ability to work collaboratively in a team environment and build positive working relationships with colleagues at all levels. - Proactive mindset with a continuous improvement approach to compliance programs and security guidelines. - High level of integrity and ethics, maintaining confidentiality and professionalism in handling sensitive information.

Role Description As a Junior Vulnerability Analyst on Fluke’s Information Security team, you will play an integral role in ensuring the security of our infrastructure across cloud, web, endpoints, and on-premises environments. This entry-level position focuses on identifying, managing, and mitigating vulnerabilities to strengthen Fluke’s overall security posture. You will work closely with the Vulnerability Management Lead and Product Security Lead, gaining hands-on experience in vulnerability management, security monitoring, and compliance efforts. This role is ideal for candidates with foundational knowledge of cybersecurity who are eager to grow their technical skills and contribute to a dynamic team. The Junior Vulnerability Analyst reports to the CISO and receives daily guidance from the Vulnerability Management Lead and Product Security Lead. Responsibilities - Vulnerability Identification and Management: - Assist in scanning, identifying, and documenting vulnerabilities across cloud, web applications, endpoints, and on-premises infrastructure. - Support prioritization and remediation efforts by working with relevant teams to address identified vulnerabilities. - Asset Inventory Maintenance: - Develop and maintain an accurate inventory of infrastructure components, including domains, applications, and systems, ensuring proper ownership and accountability. - Monitor and Improve Security Metrics: - Regularly review and contribute to the improvement of Fluke’s security posture and score by ensuring vulnerabilities are addressed promptly and security best practices are followed. - Collaborate on Security Initiatives: - Work alongside the Product Security Lead to identify and remediate vulnerabilities in digital products and external-facing assets. - Partner with cross-functional teams to implement security controls and enhance visibility into potential risks. - Security Monitoring and Alert Management: - Review, analyze, and triage security alerts related to vulnerabilities, escalating critical issues to the appropriate teams. - Reporting and Documentation: - Track and report on vulnerability management metrics, providing regular updates to leadership and stakeholders. - Contribute to the creation and improvement of documentation for vulnerability management processes, tools, and policies. - Process Improvement: - Support efforts to streamline vulnerability management workflows and implement automation where possible to enhance efficiency. Qualifications - Basic understanding of system security principles and common vulnerabilities (e.g., CVS Scoring). - Experience with CMDB management platforms is a plus (e.g., Service-Now). - Detail-oriented, with a strong focus on data accuracy and accountability. - Foundational knowledge in vulnerability assessment and familiarity with vulnerability management tools (e.g., Nexpose Rapid7). - Ability to prioritize tasks, adapt to changing requirements, and meet deadlines. - Strong communication skills, able to document findings clearly and collaborate effectively. - Willingness to learn and apply new technologies and security practices. Education - B.S. Degree in Information Assurance, Cybersecurity, Computer Science or other related field, or equivalent work experience. We Are an Equal Opportunity Employer Fortive Corporation and all Fortive Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Fortive and all Fortive Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment process should ask to speak with a Human Resources representative to request an accommodation.

• Review vulnerability reports. • Research scalable solutions for vulnerability remediation. • Collaborate with Support/NOC to ensure remediations have minimal impact on clients and facilitate maintenance windows. • Work with CS/Engineering to script and automate remediations. • Track progress in ticketing system, including master tickets for multi-client initiatives and sub tickets for individual clients. • Address vulnerabilities for clients' third-party vulnerability management. • Provide accurate and timely responses to Due Diligence Questionnaires (DDQs). • Review and analyze findings from risk assessments and penetration tests. • Participate in Business Impact Analyses and tabletop exercises. • Start measuring alignment with Microsoft benchmarks in Intune. • Perform test restores. • Conduct reviews of our KnowBe4 phishing tests and training. • Review SIEM logs. • Assist in addressing cybersecurity incidents. • Perform additional tasks as assigned to support the security team and organization