Technical Security Auditor (m/f/d)
Overview:
Join a specialized consultancy focused on information security, with expertise spanning the entire security lifecycle. The role emphasizes critical infrastructure security (KRITIS), demanding precision and technical depth.
Responsibilities:
* Conduct IT security audits, including penetration tests, configuration reviews, code analyses (SAST, IAST), and security assessments for:
* Web applications/services, mobile apps (iOS, Android), and client-server/desktop apps.
* IT infrastructures, servers, databases, and network components.
* Industrial/OT systems (e.G., process control, protective systems, central control systems).
* Develop exploits/proof-of-concept tools and automate audit processes.
* Analyze hardware, firmware, and protocol stacks.
* Create detailed audit reports and risk assessments (German/English).
* Evaluate and draft technical security concepts and conduct threat-specific analyses.
* Research emerging vulnerabilities.
Requirements:
* Degree in a technical/scientific field or equivalent experience.
* Knowledge of frameworks/methodologies (e.G., OWASP [M]ASVS, WSTG).
* Practical experience with security tools;
CTF or pen testing lab participation is a plus.
* Strong technical expertise in Windows/Linux environments.
* Programming skills (e.G., scripting languages, application technologies).
* Basic understanding of information security concepts;
certifications (e.G., OSCP, CEH) are advantageous.
* Fluent in German, with good English proficiency.
* Strong communication, teamwork, and client-facing skills.
What’s Offered:
* Collaborative environment with flat hierarchies and flexible work arrangements (including remote work).
* Access to diverse IT/OT technologies and comprehensive training programs.
* Competitive compensation, growth opportunities, and performance-based bonuses.
If this role seems to fit with you, lets speak, please forward me your CV and a suitable time for a call:
đź“© - owen.wilson@parallelconsulting.com
đź“ž - 004921529903902