For our client, a company of the thyssenkrupp Group in Bremen, we are currently looking for an IT Security Architect (m/f/d) - focus on system integration & defense .
Here's what we offer
1. Attractive salary and long-term job security through affiliation with a large corporation.
2. Company pension scheme contribution after the end of the probationary period
3. Extensive social benefits, including Christmas and holiday pay
4. Reimbursement of travel expenses
5. Usually an open-ended employment contract
6. Good opportunities for acquisition with our business partners
7. Tailored professional development opportunities and free language courses
8. A wide range of employee benefits
Your tasks
9. Ensuring compliance with project-specific protection goals regarding confidentiality, integrity and availability of company products.
10. Independent creation of system security analyses and definition of architectures, measures and concepts.
11. Independent execution of vulnerability scans and penetration tests, including analysis of the results and derivation of measures in coordination with other stakeholders.
12. Taking on the role of "System Security Manager" in proposal and implementation projects, including planning and implementation of the project-related patch and vulnerability management process.
13. Monitoring developments in the field of IT security outside the company and contributing to the product strategy.
14. Planning and conducting training courses for further education (internal + external)
15. Independent evaluation and configuration of security products (e.g., firewalls, diodes, SIEMs, security gateways) as well as verification and validation of the configuration.
16. Cooperation with IT security authorities and auditors
17. Management of aspect security for products from suppliers and UAN
Your profile
18. Completed university degree in computer science or a comparable field, or a comparable qualification
19. Certifications such as "Certified in Cybersecurity", IT Baseline Protection Practitioner, SSCP, PJPT"
20. Specialized, demanding certifications (OSCP, HTB CPTS, PNPT)
21. Extensive professional experience
22. Relevant knowledge of the German Armed Forces standards (ZDv A-960/1, A-961/1, A-962/1, A-1130)
23. IT baseline protection according to BSI standard series 200-x
24. Knowledge of security aspects in one of the following areas: operating system (Linux, Windows), networks, virtualization
25. ISO standards (series) 19249, 27k, 62443
26. NIST Security Publications