Associate / Pentester (Red Team) (m/f/d) - Cybersecurity Audit

CF A is a unique talent incubator inside Siemens. We offer continuous career coaching and mentoring throughout the program, all whilst working with top Siemens business leaders on multiple high-profile projects around the world. This is your chance to build your network within the company, develop your operational experience and prepare yourself for a leading role.

The Cybersecurity and Applications Practice provides core assurance over the cybersecurity health of the company which includes IT/OT and R&D infrastructure, product security, and cloud applications. We are on the lookout for people with a great skillset, an international mindset and new ideas who understand Siemens businesses and how Cybersecurity helps enable and increase market value. Are you one of them?

To discover more about CF A have a look atControlling and Finance Assurance - Siemens Global

What part will you play?

• As valuable member of the assurance team you will be responsible for conducting Cybersecurity assessments across the entire Siemens landscape, including products, services, IT-systems, factories, and software development centers. During this process you will perform ethical hacking activities, design attack scenarios for state-of-the-art technologies and highlight important observations totranslate technical findings into management information so that they can take effective actions.
• Apply hacking principles and red team methodologies, tools and techniques to mimic real-world threat behaviors faced by the Siemens’s digital environment, e.g. cloud applications, on-premise infrastructure, digital products and services.
• You work closely with cybersecurity experts from multiple industries to improve their solutions by tackling the root cause of the issues and find innovative solutions to modern challenges.
• You independently conduct research on latest developments in cybersecurity technologies and threats and understand how this is impacting and changing the Siemens’ environment.

• Strong academic history (Bachelor degree) in IT, Computer Science or other related fields; certifications such as GIAC GPEN,OSCP, OSWE, CRTP, eJPT, CREST, etc. are a plus.
• Good scripting and programming skills and experience with languages such as Bash, Python,Powershell, and C++ / C#.
• At least 2+ years of professional full-time working experience within Siemens or a related industry in penetration testing with a proven record of continuous career development.
• Demonstrated affinity to learn about the latest trends in cybersecurity and keep up to date in a continuously challenging environment.
• You have first experience with one or more of the following aspects of penetration testing / red teaming: application and software security, EDR and antivirus evasion, C2 setup, automation and scaling of security testing, Active Directory attacks, etc.
• Demonstrated first experience in capture the flag (CTFs) events, bug hunting or vulnerability research (CVEs) is a plus.
• You demonstrate an international mindset and are open to travelling and working in a diverse team.
• You have a great attitude, curiosity, and willingness to learn.

What we offer.

• 2 to 3 days of mobile working per week as a future global standard
• An environment where everyone can bring their whole self to work and feel a sense of belonging
• 30 leave days and a variety of flexible working models that allow time off for yourself and your family
• Share matching programs to become a shareholder of Siemens AG
• Pension plan to ensure financial security
• 50+ learning hours per year for both personal and professional growth

Any questions left?

Clickhereif you wish to find out more about Siemens before applying.

As an equal-opportunity employer we are happy to considerapplications from individuals with disabilities.

#li-get

#li-ck1