SITS Group logo
SITS Group

Your digital security: Our center of focus.

Information Security Consultant

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 501-1,000H1B No SponsorCompany SiteLinkedIn

Location

Germany

Posted

1 day ago

Salary

0

Seniority

Senior

Bachelor Degree3 yrs expGermanEnglish

Job Description

Information Security Consultant

SITS Group

• Advise our clients in developing, implementing and reviewing security concepts in a (partially) project-leading capacity • Conduct IT risk analyses and implement and develop security standards and processes • Proactively identify client needs: document, review and evaluate processes • Design goal-oriented, tailored solutions together with our clients, speaking “their language” • Support the implementation and ongoing development of the ISMS at our clients • Improve risk posture and information security by initiating, coordinating and monitoring recommended measures — your hands-on mentality is in demand with our clients

Job Requirements

  • Completed degree in Computer Science, Mathematics, Engineering, Business Informatics or comparable IT qualification, plus several years of professional experience in the IT security industry appropriate to the role
  • Experience in implementing and further developing information security management systems according to ISO 27001 and/or BSI IT-Grundschutz; ideally first exposure to B3S
  • Preferably experience in drafting IT security, emergency and operational concepts as well as conducting information security risk analyses according to ISO 27005
  • Initial audit experience and industry-recognized personal certifications, as well as basic project management knowledge (e.g., PRINCE2); experience in the healthcare sector is desirable
  • Strong analytical skills, ability to work independently and assume responsibility in (partially) project-leading roles, and a high willingness to commit and travel
  • Convincing communication skills with very good German and English proficiency and a service- and client-oriented working style

Benefits

  • Appreciation: An open-hearted, respectful and appreciative communication culture comes first for us.
  • Team spirit: Exciting and varied tasks await you, supported by a great and supportive team. We promote not only a healthy but also a collegial team structure.
  • Onboarding & training: We place great importance on structured onboarding and thorough training. We want you to feel welcome!
  • Work-life blending: We offer mobile working options and flexible working time models with a focus on a healthy work-life balance.
  • Perspectives: You will have ample freedom for creative work, personal development opportunities and interesting training options — also within the team.
  • Corporate benefits: Attractive and numerous employee discounts and benefits await you.
  • Hire a Friend: Recommend your desired colleague! Our attractive employee referral program is close to our hearts and rewards you as well.
  • Modern workplace: We provide modern IT equipment (e.g., company laptop, headsets, second monitor, smartphone, etc.).
  • Great company culture: We maintain an open, informal culture and celebrate memorable large and small team events!

Related Categories

Related Job Pages

More Security Engineer Jobs

SITS Group logo

Information Security Consultant – m/f/d

SITS Group

Your digital security: Our center of focus.

Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Advise our clients on developing, implementing and reviewing security concepts in a (partly) project-leading capacity • Perform IT risk analyses as well as implement and develop security standards and processes • Proactively identify client needs: document, assess and evaluate processes • Design goal-oriented, customized solutions together with our clients, speaking “their language” • Support the implementation and ongoing development of clients' ISMS • Improve the risk posture/information security by initiating, coordinating and monitoring recommended measures — your hands-on mentality is in demand with our clients

Germany
HubSpot logo

Security Engineer

HubSpot

The easy-to-use CRM to scale your business.

Full TimeRemoteTeam 1,001-5,000Since 2006H1B Sponsor

Role Description We are seeking a Security Engineer with expertise in implementing and troubleshooting security tools to enhance and support our security infrastructure. This role focuses on evaluating, deploying, and maintaining a suite of security technologies that protect our organization’s assets. The ideal candidate will have extensive experience in security engineering, hands-on tool deployment, and troubleshooting complex issues within various security solutions. Key Responsibilities - Security Tool Implementation: Lead the planning, deployment, and configuration of security tools, ensuring they meet organizational needs and integrate seamlessly with existing systems. Experience with SASE tools such as (Netskope/Zscaler), EDR tools such as (Crowdstrike/SentinelOne), Endpoint Privilege Management, Application Allowlisting, Email Security, SIEM Management and Detection Engineering. - Troubleshooting and Support: Diagnose and resolve issues with security tools in real-time to maintain their effectiveness, reduce downtime, and ensure optimal performance. - Tool Evaluation and Testing: Research, test, and recommend new security technologies based on the latest threat landscape and organizational needs. Lead proof-of-concept (POC) projects to assess potential new tools. - System Integration: Work closely with IT and other teams to ensure security tools are effectively integrated with various systems, including cloud and on-premises environments. - Automation and Optimization: Develop scripts and automation processes to improve the efficiency and reliability of security tools, minimizing repetitive tasks and reducing time-to-response. - Documentation and Knowledge Sharing: Create and maintain detailed documentation of security tool configurations, troubleshooting procedures, and best practices to ensure consistent processes and knowledge transfer. - Collaboration: Collaborate with other security teams, such as incident response and vulnerability management, to identify tool requirements, share insights, and improve overall security capabilities. - Training and Mentorship: Act as a subject matter expert on security tools, providing training and guidance to junior team members and stakeholders. Qualifications - Experience: 3+ years of experience in cybersecurity, with a focus on security engineering, tool deployment, and troubleshooting. - Education: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Certifications: Relevant certifications, such as CISSP, GIAC, CEH, or vendor-specific certifications for security tools (e.g., CrowdStrike, Netskope, Tenable, or similar). - Technical Skills: - Strong hands-on experience with a variety of security tools, such as endpoint protection, SIEM, vulnerability management, EDR, DLP, and network security tools. - Deep troubleshooting skills across both hardware and software security solutions. - Familiarity with scripting languages (Python, PowerShell, Bash) for automation of tasks related to tool deployment and management. - Understanding of network protocols, cloud environments, and security frameworks (MITRE ATT&CK, NIST, CIS). - Experience with configuring and managing tools in cloud environments (AWS, Azure, or GCP). - Soft Skills: - Strong analytical and problem-solving abilities with attention to detail. - Excellent communication skills to collaborate across teams and convey technical information effectively. - Ability to work independently and manage multiple projects in a fast-paced environment. Benefits - Flexible work environment. - In-person onboarding for remote employees. - Support for candidates needing accommodations.

Worldwide
£56K - £84K / year
Nagarro logo

OT Security & BeyondTrust (Bomgar) Integration Specialist

Nagarro

Nagarro (Frankfurt: NA9) is a leader in digital product engineering and drives technology-led business breakthroughs.

Full TimeRemoteTeam 10,001+Since 1996H1B Sponsor

Role Description We are seeking a specialist with experience in implementing and integrating BeyondTrust (Bomgar) solutions within manufacturing and OT (Operational Technology) environments. The role will support secure remote access requirements across plant operations while ensuring compliance with OT cybersecurity standards. - Design, deploy, and integrate BeyondTrust (Bomgar) remote access solutions. - Enable secure remote access for plant systems, industrial control systems, and third-party vendors. - Work with OT and IT teams to establish secure connectivity and access governance. - Integrate BeyondTrust with Active Directory, IAM/PAM solutions, and ITSM platforms. - Support remote access use cases across SCADA, MES, PLC, HMI, and related plant systems. - Ensure compliance with OT cybersecurity policies and industry best practices. - Collaborate with plant operations, infrastructure, cybersecurity, and application teams. Qualifications - Hands-on experience with BeyondTrust (Bomgar) implementation and integration. - Understanding of OT/Industrial environments and plant network architectures. - Experience with SCADA, MES, PLC, HMI, and industrial control systems. - Knowledge of Privileged Access Management (PAM), Identity & Access Management (IAM), and secure remote access solutions. - Familiarity with Active Directory, network security, VPNs, and access control mechanisms. - Understanding of OT cybersecurity frameworks and industrial security practices. Requirements - Experience in cement, building materials, mining, chemicals, or other process manufacturing industries. - Exposure to vendor remote access management in industrial plants. - Relevant BeyondTrust, cybersecurity, or industrial security certifications. Benefits - Generous Work-Life Balance: Flexible working hours and option to work from home. - Health & Wellbeing: Ergonomic workstations, subsidies for health services, sponsored sports events, etc. - Company Events & Community: Regular after-work sessions, shared breakfasts/lunches, summer and Christmas parties, team events, and more. - Open, Agile Culture: Flat hierarchies, high level of personal responsibility, international and diverse teams, friendly and supportive team spirit. - Training & Personal Development: Focus on promoting both technical and personal growth to ensure employees stay up to date. - Modern Tools & Workspace Design: Modern office, dual monitors, ergonomic equipment, and excellent on-site infrastructure.

DACH
Softeq logo

FIPS Storage Security Specialist

Softeq

Established in 1997, Softeq was built from the ground up to specialize in new product development and R&D, tackling the most difficult problems in the tech sphere. Now we've expanded to offer early-stage innovation and ideation plus digital transformation business consulting. Our superpower is to deliver all of this under one roof on a global scale. So let's get started and build a better future together!

Role Description Softeq is looking for a senior specialist to assess the FIPS-readiness of an embedded storage / SSD product and define the required remediation path. - Assess the current storage product architecture from a FIPS 140-3 readiness perspective. - Review cryptographic module boundaries, secure boot, key handling, RNG/entropy, and firmware security assumptions. - Identify certification blockers and architectural gaps. - Evaluate whether the current hardware platform is sufficient, or whether additional security hardware (for example, a secure element or dedicated security chip) is required. - Review third-party hardware / firmware components and highlight certification risks. - Provide practical recommendations for remediation priorities and certification feasibility. Qualifications - Hands-on experience with FIPS 140-2 / 140-3 readiness, validation support, or certification-oriented security work specifically for storage, SSD, or other embedded storage devices. - Strong understanding of storage device security architecture. - Experience with cryptographic module boundary definition in embedded storage products. - Familiarity with secure boot, firmware signing, key management, and entropy / RNG considerations. - Ability to perform technical gap assessment on incomplete or partially documented hardware / firmware systems. Company Description Established in 1997, Softeq was built from the ground up to specialize in new product development and R&D, tackling the most difficult problems in the tech sphere. Now we've expanded to offer early-stage innovation and ideation plus digital transformation business consulting. Our superpower is to deliver all of this under one roof on a global scale. So let's get started and build a better future together!

Lithuania