Associate / Pentester (Red Team) (m/f/d) - Cybersecurity Audit

Start your cyber career with us! As part of the global Cybersecurity Assurance function, we help Siemens to achieve their goals by providing objective, factual and independent assurance to the Siemens Managing Board and Audit Committee. As a business partner to Siemens executive management, we leverage our expertise in a wide range of topics to create an impact that drives change. We offer a vibrant and inclusive environment which ensures a variety of perspectives and enables big picture thinking. To deliver on our vision of being pioneers in assurance and a talent incubator for Siemens, we offer a unique Grow and Development Model. We believe in the concept of lifelong learning and therefore encourage our people towards a mindset where continuous upskilling and reskilling becomes a natural part of our career. We invest in our expertise and therefore provide continuous career coaching, trainings and mentoring, all whilst working with top Siemens business leaders on multiple high-profile projects around the world. Our Cybersecurity team provides core assurance over the cybersecurity health of the company which includes IT and OT infrastructures, product security, software development and cloud environments. We are on the lookout for people with a great skillset, an international mindset and new ideas who understand Siemens businesses and how Cybersecurity helps enable and increase market value. Are you one of them? To discover more about the global Siemens assurance function click here .

• As valuable member of the assurance team you will be responsible for conducting Cybersecurity assessments across the entire Siemens landscape, including products, services, IT‑systems, factories, and software development centers. During this process you will perform ethical hacking activities, design attack scenarios for state‑of‑the‑art technologies and highlight important observations to translate technical findings into management information so that they can take effective actions.

• Apply hacking principles and red team methodologies, tools and techniques to mimic real‑world threat behaviors faced by the Siemens’s digital environment, e.g. cloud applications, on‑premise infrastructure, digital products and services.

• You work closely with cybersecurity experts from multiple industries to improve their solutions by tackling the root cause of the issues and finding innovative solutions to modern challenges.

• You independently conduct research on latest developments in cybersecurity technologies and threats and understand how this is impacting and changing the Siemens’ environment.

• Strong academic history (Bachelor degree) in IT, Computer Science or other related fields; certifications such as GIAC GPEN, OSCP, OSWE, CRTP, eJPT, CREST, etc. are a plus.

  Good scripting and programming skills and experience with languages such as Bash, Python, PowerShell, and C++ / C#.

  At least 2+ years of professional full‑time working experience within Siemens or a related industry in penetration testing with a proven record of continuous career development.

  Demonstrated affinity to learn about the latest trends in cybersecurity and keep up to date in a continuously challenging environment.

  You have first experience with one or more of the following aspects of penetration testing / red teaming: application and software security, EDR and antivirus evasion, C2 setup, automation and scaling of security testing, Active Directory attacks, etc.

  Demonstrated first experience in capture the flag (CTFs) events, bug hunting or vulnerability research (CVEs) is a plus.

  You demonstrate an international mindset and are open to travelling and working in a diverse team.

  You have a great attitude, curiosity, and willingness to learn.

• 2 to 3 days of mobile working per week as a future global standard.

  An environment where everyone can bring their whole self to work and feel a sense of belonging.

  30 leave days and a variety of flexible working models that allow time off for yourself and your family.

  Share matching programs to become a shareholder of Siemens AG.

  Pension plan to ensure financial security.

  50+ learning hours per year for both personal and professional growth.

Clickhere if you wish to find out more about Siemens before applying.