SITS Group logo
SITS Group

Your digital security: Our center of focus.

Information Security Consultant – m/f/d

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 501-1,000H1B No SponsorCompany SiteLinkedIn

Location

Germany

Posted

1 day ago

Salary

0

Seniority

Senior

Bachelor Degree3 yrs expGermanEnglish

Job Description

Information Security Consultant – m/f/d

SITS Group

• Advise our clients on developing, implementing and reviewing security concepts in a (partly) project-leading capacity • Perform IT risk analyses as well as implement and develop security standards and processes • Proactively identify client needs: document, assess and evaluate processes • Design goal-oriented, customized solutions together with our clients, speaking “their language” • Support the implementation and ongoing development of clients' ISMS • Improve the risk posture/information security by initiating, coordinating and monitoring recommended measures — your hands-on mentality is in demand with our clients

Job Requirements

  • University degree in Computer Science, Mathematics, Engineering, Business Informatics, or a comparable IT qualification, plus several years of relevant professional experience in the IT security sector appropriate for the role
  • Experience implementing and developing information security management systems according to ISO 27001 and/or BSI IT-Grundschutz; ideally initial exposure to B3S
  • Ideally, experience developing IT security, emergency and operational plans, as well as conducting information security risk analyses according to ISO 27005
  • Initial audit experience and industry-recognized personal certifications, as well as basic project management knowledge (e.g., PRINCE2), desirable — experience in the healthcare sector is a plus
  • Strong analytical skills, ability to work independently and responsibly in a (partly) project-leading role, and a high willingness to commit and travel
  • Convincing communication skills with very good German and English language abilities, and a service- and customer-oriented working style.

Benefits

  • Appreciation: An open, warm, respectful and appreciative communication culture is our top priority.
  • Team spirit: Exciting and varied tasks await you, supported by a great and supportive team. We promote not only a healthy but also a collegiate team structure.
  • Onboarding & training: We place great emphasis on structured onboarding and intensive training. We want you to feel welcome!
  • Work-life blending: We offer options for mobile working and flexible working time models with a focus on a healthy work-life balance.
  • Perspectives: You will have plenty of freedom for creative work, personal development options and interesting training opportunities — also within the team.
  • Corporate benefits: Attractive and numerous employee discounts and offers await you.
  • Hire a Friend!: Recommend your preferred colleague! Our attractive employee referral program is important to us and rewarding for you.
  • Modern workplace: We provide modern IT equipment (e.g., company laptop, headsets, second monitor, smartphone, etc.).
  • Great company culture: We cultivate an open, informal culture and celebrate legendary team events, big and small!

Related Categories

Related Job Pages

More Security Engineer Jobs

HubSpot logo

Security Engineer

HubSpot

The easy-to-use CRM to scale your business.

Full TimeRemoteTeam 1,001-5,000Since 2006H1B Sponsor

Role Description We are seeking a Security Engineer with expertise in implementing and troubleshooting security tools to enhance and support our security infrastructure. This role focuses on evaluating, deploying, and maintaining a suite of security technologies that protect our organization’s assets. The ideal candidate will have extensive experience in security engineering, hands-on tool deployment, and troubleshooting complex issues within various security solutions. Key Responsibilities - Security Tool Implementation: Lead the planning, deployment, and configuration of security tools, ensuring they meet organizational needs and integrate seamlessly with existing systems. Experience with SASE tools such as (Netskope/Zscaler), EDR tools such as (Crowdstrike/SentinelOne), Endpoint Privilege Management, Application Allowlisting, Email Security, SIEM Management and Detection Engineering. - Troubleshooting and Support: Diagnose and resolve issues with security tools in real-time to maintain their effectiveness, reduce downtime, and ensure optimal performance. - Tool Evaluation and Testing: Research, test, and recommend new security technologies based on the latest threat landscape and organizational needs. Lead proof-of-concept (POC) projects to assess potential new tools. - System Integration: Work closely with IT and other teams to ensure security tools are effectively integrated with various systems, including cloud and on-premises environments. - Automation and Optimization: Develop scripts and automation processes to improve the efficiency and reliability of security tools, minimizing repetitive tasks and reducing time-to-response. - Documentation and Knowledge Sharing: Create and maintain detailed documentation of security tool configurations, troubleshooting procedures, and best practices to ensure consistent processes and knowledge transfer. - Collaboration: Collaborate with other security teams, such as incident response and vulnerability management, to identify tool requirements, share insights, and improve overall security capabilities. - Training and Mentorship: Act as a subject matter expert on security tools, providing training and guidance to junior team members and stakeholders. Qualifications - Experience: 3+ years of experience in cybersecurity, with a focus on security engineering, tool deployment, and troubleshooting. - Education: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Certifications: Relevant certifications, such as CISSP, GIAC, CEH, or vendor-specific certifications for security tools (e.g., CrowdStrike, Netskope, Tenable, or similar). - Technical Skills: - Strong hands-on experience with a variety of security tools, such as endpoint protection, SIEM, vulnerability management, EDR, DLP, and network security tools. - Deep troubleshooting skills across both hardware and software security solutions. - Familiarity with scripting languages (Python, PowerShell, Bash) for automation of tasks related to tool deployment and management. - Understanding of network protocols, cloud environments, and security frameworks (MITRE ATT&CK, NIST, CIS). - Experience with configuring and managing tools in cloud environments (AWS, Azure, or GCP). - Soft Skills: - Strong analytical and problem-solving abilities with attention to detail. - Excellent communication skills to collaborate across teams and convey technical information effectively. - Ability to work independently and manage multiple projects in a fast-paced environment. Benefits - Flexible work environment. - In-person onboarding for remote employees. - Support for candidates needing accommodations.

Worldwide
£56K - £84K / year
Nagarro logo

OT Security & BeyondTrust (Bomgar) Integration Specialist

Nagarro

Nagarro (Frankfurt: NA9) is a leader in digital product engineering and drives technology-led business breakthroughs.

Full TimeRemoteTeam 10,001+Since 1996H1B Sponsor

Role Description We are seeking a specialist with experience in implementing and integrating BeyondTrust (Bomgar) solutions within manufacturing and OT (Operational Technology) environments. The role will support secure remote access requirements across plant operations while ensuring compliance with OT cybersecurity standards. - Design, deploy, and integrate BeyondTrust (Bomgar) remote access solutions. - Enable secure remote access for plant systems, industrial control systems, and third-party vendors. - Work with OT and IT teams to establish secure connectivity and access governance. - Integrate BeyondTrust with Active Directory, IAM/PAM solutions, and ITSM platforms. - Support remote access use cases across SCADA, MES, PLC, HMI, and related plant systems. - Ensure compliance with OT cybersecurity policies and industry best practices. - Collaborate with plant operations, infrastructure, cybersecurity, and application teams. Qualifications - Hands-on experience with BeyondTrust (Bomgar) implementation and integration. - Understanding of OT/Industrial environments and plant network architectures. - Experience with SCADA, MES, PLC, HMI, and industrial control systems. - Knowledge of Privileged Access Management (PAM), Identity & Access Management (IAM), and secure remote access solutions. - Familiarity with Active Directory, network security, VPNs, and access control mechanisms. - Understanding of OT cybersecurity frameworks and industrial security practices. Requirements - Experience in cement, building materials, mining, chemicals, or other process manufacturing industries. - Exposure to vendor remote access management in industrial plants. - Relevant BeyondTrust, cybersecurity, or industrial security certifications. Benefits - Generous Work-Life Balance: Flexible working hours and option to work from home. - Health & Wellbeing: Ergonomic workstations, subsidies for health services, sponsored sports events, etc. - Company Events & Community: Regular after-work sessions, shared breakfasts/lunches, summer and Christmas parties, team events, and more. - Open, Agile Culture: Flat hierarchies, high level of personal responsibility, international and diverse teams, friendly and supportive team spirit. - Training & Personal Development: Focus on promoting both technical and personal growth to ensure employees stay up to date. - Modern Tools & Workspace Design: Modern office, dual monitors, ergonomic equipment, and excellent on-site infrastructure.

DACH
Softeq logo

FIPS Storage Security Specialist

Softeq

Established in 1997, Softeq was built from the ground up to specialize in new product development and R&D, tackling the most difficult problems in the tech sphere. Now we've expanded to offer early-stage innovation and ideation plus digital transformation business consulting. Our superpower is to deliver all of this under one roof on a global scale. So let's get started and build a better future together!

Role Description Softeq is looking for a senior specialist to assess the FIPS-readiness of an embedded storage / SSD product and define the required remediation path. - Assess the current storage product architecture from a FIPS 140-3 readiness perspective. - Review cryptographic module boundaries, secure boot, key handling, RNG/entropy, and firmware security assumptions. - Identify certification blockers and architectural gaps. - Evaluate whether the current hardware platform is sufficient, or whether additional security hardware (for example, a secure element or dedicated security chip) is required. - Review third-party hardware / firmware components and highlight certification risks. - Provide practical recommendations for remediation priorities and certification feasibility. Qualifications - Hands-on experience with FIPS 140-2 / 140-3 readiness, validation support, or certification-oriented security work specifically for storage, SSD, or other embedded storage devices. - Strong understanding of storage device security architecture. - Experience with cryptographic module boundary definition in embedded storage products. - Familiarity with secure boot, firmware signing, key management, and entropy / RNG considerations. - Ability to perform technical gap assessment on incomplete or partially documented hardware / firmware systems. Company Description Established in 1997, Softeq was built from the ground up to specialize in new product development and R&D, tackling the most difficult problems in the tech sphere. Now we've expanded to offer early-stage innovation and ideation plus digital transformation business consulting. Our superpower is to deliver all of this under one roof on a global scale. So let's get started and build a better future together!

Lithuania
ServiceNow logo

Sr Product Security Engineer

ServiceNow

ServiceNow provides cloud-based services that automate enterprise information technology operations. As an employer, ServiceNow offers a challenging, collaborat

Full TimeRemoteTeam 29,000Since 2004

Company Description It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone-freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow- helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started. Join us to put AI to work for people. Job Description What you get to do in this role: ServiceNow's Product Security organisation is building a dedicated Security R&D function - a software engineering team that builds security capabilities with the same engineering standards as ServiceNow's product organisation. We are looking for a Senior Security Engineer to join this team as a core builder. Security R&D operates in two complementary modes: open contribution to product engineering - writing code alongside product teams where security expertise adds value - and developing its own security capabilities, including internal tooling, externally facing product features, AI-powered security automation, and third-party integrations. This is a new team being stood up in Petah Tikva, Israel, co-located with ServiceNow's AI Security Research team. You will be part of the founding engineering team, with the opportunity to shape the technical culture from the ground up. This role reports to the Sr. Engineering Manager, Security R&D. What You Will Do Write Code That Secures the Platform - Develop security tooling, automation, and services as part of the Security R&D team's core engineering output. - Contribute code to ServiceNow product engineering codebases, working alongside product teams to embed security capabilities directly into the platform. - Build integrations with AI-powered services - both in-house and third-party - to automate and scale security workflows. - Write clean, tested, production-quality code that meets enterprise standards for reliability and performance. Collaborate and Learn - Work alongside senior engineers and the AI Security Research team, learning the security domain while contributing strong software engineering fundamentals. - Participate in code reviews, design discussions, and sprint ceremonies, contributing to the team's engineering culture from day one. - Partner with product engineering teams during open contribution engagements, building relationships through quality work. Grow Your Impact - Develop deep expertise in security engineering and AI security as a member of a team that operates at the cutting edge of both fields. - Take increasing ownership of components and features as you ramp up, with a clear path to broader technical leadership. - Stay curious about emerging AI/ML technologies and contribute ideas for how Security R&D can leverage them. What Makes This Role Unique - Builder-led culture: Security R&D is defined by engineering output, not advisory reviews. We build production security capabilities with the same discipline as product engineering. - Dual operating model: The team both contributes directly to product engineering and develops its own security products and services. - Platform advantage: ServiceNow owns the entire stack - runtime, ACLs, data layer, workflow engine. You will build security capabilities that no external vendor can replicate. - Founding team: This is a new team being built from scratch. You will shape its engineering culture, technical standards, and identity from day one. - AI intersection: The role sits alongside the AI Security Research team, placing you at the frontier of securing AI systems at enterprise scale. Qualifications To be successful in this role, you have: - 5+ years of professional software engineering experience building production systems. - Bachelor's degree in Computer Science, Engineering, or a related technical field. - Strong hands-on proficiency in Python and Java. You are a software engineer first - writing production code is what you do. - Solid understanding of software engineering fundamentals: data structures, algorithms, system design, testing, and CI/CD practices. - Experience building services or applications in cloud environments with an understanding of scalability and reliability principles. - Collaborative mindset - you thrive in team environments, contribute to shared codebases, and communicate effectively with other engineers. - Passion for next-generation AI technologies and a desire to work at the intersection of software engineering and security. Deep security or AI expertise is not required - we will invest in your growth in both areas. Preferred - Any exposure to security concepts - application security, secure coding practices, vulnerability management, or security tooling. - Familiarity with AI/ML concepts, LLMs, or experience integrating AI services into applications. - Experience with container/Kubernetes environments or cloud-native development (AWS preferred). - Experience in a SaaS or enterprise software environment. - Demonstrated learning agility - a track record of quickly ramping up in new technical domains. Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact globaltalentss@servicenow.com for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2026 Fortune Media IP Limited. All rights reserved. Used under license. .

Israel