(Senior) Information Security Professional (f/m/d)

Tasks

As an Information Security Engineer, you will play a crucial role in ensuring the security of our applications and systems. You will be responsible for shaping the application security future for our growing cloud. Together with the security team, you shape the standards to develop in a secure way, create transparency over the code’s quality and closely work with our development teams to ship the most secure product possible. This role offers the opportunity to work on challenging projects and collaborate with cross-functional teams to implement best practices in application security.
Your main tasks include:

• Support in creating the application security strategy, align it with internal development units and support them in execution.
• Actively drive the topic of supply-chain management for developers, provide the needed transparency and support in third-party vulnerability reduction efforts.
• Conduct security assessments, such as penetration tests, threat modellings, and concept reviews.
• Develop and implement secure coding practices and guidelines for application development teams.

Qualifications

The basis for this challenging position is in-depth experience in the field of information security. You also have the intrinsic motivation and passion to keep your knowledge up to date. Strong problem-solving skills, good English skills, quality awareness, personal responsibility and the ability to work in a team round off your profile.

• Ideally, you already led application security topics in a large corporation and can show us your achievements. Hence, you are not shy to advocate security to the engineering team and operational team and can negotiate on security requirements and SLAs.
• You have experience with technical security audits of all kinds (white-box and black-box pentests, threat modelling).
• You are fluent with at least one programming language, ideally in Python and/or Golang.
• You understand the aspects of modern agile product development and you have hands-on experience with concepts and technologies like DevOps, CI/CD, and Kubernetes.
• You’re a true team player, always leading by example. You’re comfortable with leading projects and stakeholders efficiently also in stressful situations.

We offer an exciting, international field of activity full of globally scaling cloud and hosting technologies. As a member of the multinational information security division, you will work in the group of companies of one of the largest hosters in Europe. You contribute your knowledge and experience to protect our infrastructure and customer data even more sustainably.

Benefits

• Hybrid working model with home office option.
• Flexible working hours through trust-based working hours.
• At some locations a subsidized canteen and various free drinks.
• Modern office space with very good transport connections.
• Various employee discounts for activities and products.
• Employee events such as summer and winter parties, as well as workshops.
• Numerous training and development opportunities.
• Various health offers, such as sports and health courses.

Job info

Location: Karlsruhe
Type: Full-time
Category: IT Security
Work experience: Professionals
Reference ID: 673