Information Security Engineer (m/f/d)

Your daily workout

• Analysis: You use industry standard Cybersecurity Frameworks to perform security controls gap analyses and provide recommendations for improvements and remediations

• Assessment: You conduct security audits, vulnerability scans, and risk assessments to develop a risk register and mitigation strategy

• Documentation: You lead or support the development and maintenance of security policies, procedures, and standards to support the confidentiality, integrity, and availability of our systems and data

• Implementation and Maintenance: You design and implement security controls, processes, and systems that protect our systems and data and improve our security posture

• Monitor and Investigate: You participate in security incident investigations by monitoring and analyzing security logs and alerts, summarizing the data, establishing a timeline of the attack, providing guidance for containment, eradication, and recovery, and participating in post-incident activities

• Development: You stay up-to-date with the current threat landscape, trends in the industry, and vulnerability management techniques

Your fitness level

• Education: You have completed a training or internship program in Information Security or have a university degree. Certifications such as the ISC2 CISSP/CCSP, ISACA CISM/CCSP, or CompTIA Security+ are a plus

• Professional Experience: You have 3+ years of professional experience in information security

• Know-How: You have good knowledge of implementing and maintaining at least one major cybersecurity framework (e.g. ISO27001, NIST CSF, CIS Controls, etc.)

• Skills: You have hand-on experience with performing security analysis, security incident response and investigation, and security control development and management.

• Working style: You work reliably, independently and produce high-quality work

• Language skills: You have professional proficiency in English (German is a plus)

Your training goal for your first 6 months

• GAP Analysis: You will perform a GAP analysis against a major cybersecurity framework, present your findings, and develop a risk register to prioritize and track the remediation plan

• Audit: You will conduct a privilege audit against our core systems and make recommendations to reduce the potential attack surface. 

• Security Development: You will collaborate as part of the EGYM Systems and Infrastructure team to deploy the first phase of a Role-based Access Control system and process

The equipment we provide

• Modern Culture: Be part of a modern and international company culture where talent and passion are welcomed, heard, and part of the decision-making process

• Continuous Development: Develop your skills with varied, challenging tasks and regular feedback for a steep learning curve

• Work-Life-Balance: Benefit from flexible working hours, home office possibilities and 30 days of vacation per year

• Fit & Healthy: Train for free with EGYM Wellpass in several thousand sports and health facilities across Germany and/or alternatively use our in-house gym with EGYM products

• Flex Budget: Use €60 per month flexibly for public transportation and a meal subsidy

• Discounts: Get a variety of great discounted offers, from fashion to leisure, through our employee benefits portal

Contact Information

Upload your documents (CV, salary expectations and earliest possible start date) and specify the job ID #1849. 

Contact: Sven Bunkus