Penetration Tester (f/m/d)

Do you want to help create the future of healthcare? Our name, Siemens Healthineers, was selected to honor our people who dedicate their energy and passion to this cause. It reflects their pioneering spirit combined with our long history of engineering in the ever‑evolving healthcare industry.

We offer you a flexible and dynamic environment with opportunities to go beyond your comfort zone in order to grow personally and professionally. Sounds interesting?

Then come and join our global team as Penetration Tester (f/m/d) and become part of our team of cyber security experts in the Healthcare sector.

Choose the best place for your work – Within the scope of this position, it is possible, in consultation with your manager, to work mobile (within Germany) up to an average volume of 60% of the respective working hours.

Even more flexibility? Mobile working from abroad is possible for up to 30 days a year under certain conditions and in selected countries.

Please upload your documents in English.

• You join a team of offensive security testers and lead penetration tests and security assessments on internal and external networks, Windows and Linux environments, cloud (AWS and Azure) architecture, IoT, healthcare devices, and more.
• You conduct scans, penetration tests and source code analysis of web applications.
• You identify and exploit security vulnerabilities to demonstrate their impact on the environment and business.
• You join authorized hacking engagements that simulate real‑world attack techniques to gain initial access, pivot across systems and networks, and exfiltrate data.
• You write comprehensive and accurate reports for both technical and executive audiences.
• You have a master’s degree in computer science (or related field).
• You convince us with several years of experience in the role of an ethical hacker/penetration tester.
• You have good knowledge in the following areas: port scanners, vulnerability scanners, and exploitation frameworks.
• You understand networking and network protocols.
• You are familiar with enumeration techniques.
• You have a basic knowledge of web application manual and automatic testing, including OWASP and NIST guidelines.
• You understand Active Directory, Windows and Linux access controls and administration.
• You are familiar with authentication and authorization models.
• You understand cloud platforms such as Azure and AWS.
• Additionally, you should have a high‑level understanding of threat modeling and risk assessment, web server administration, and penetration testing processes, procedures, legal agreements, and reporting requirements.
• You are familiar with post‑exploitation techniques and have experience working with databases such as MS SQL, Oracle DB, PostgreSQL, and MySQL.
• Certifications such as OSCP, OSCE, AWAE, CISCO CCNA, CISCO CCNP, CREST CRT, GIAC (GXPN, GWAPT, GPEN, GMOB) are nice to have.
• Bug hunting experience, LaTeX and CVE is a plus.
• Experience with SCRUM/KANBANas well asexperience with leading small teams are nice to have.

• You have excellent written and verbal English communication skills. German language skills are nice to have.
• You have the ability to clearly communicate and present technical topics.
• You have good analytical and problem‑solving skills.
• You have a passion for learning new technologies.
• We win together: You are a team player with the ability to work independently.
• You convince us with advanced interpersonal, verbal and written communications skills.
• You have the ability to communicate and present technical and business topics.
• You can multitask, manage time effectively and prioritize tasks.
• You are result oriented.
• Your self‑motivation and creativity round up your profile.

Siemens Healthineers is a leading global medical technology company. 73,000 dedicated colleagues in over 70 countries are driven to shape the future of healthcare. An estimated 5 million patients across the globe benefit every day from our innovative technologies and services in the areas of diagnostic and therapeutic imaging, laboratory diagnostics and molecular medicine, as well as digital health and enterprise services.

Our culture embraces different perspectives, open debate, and the will to challenge convention. Change is a constant aspect of our work. We aspire to lead the change in our industry rather than just react to it. That’s why we invite you to take on new challenges, test your ideas, and celebrate success. Check our Careers Site: https://www.siemens-healthineers.com/de/careers

As an equal opportunity employer, we welcome applications from individuals with disabilities. #myabilityshs

Wish to find out more before applying? Contact us: recruitinggersupport.func@siemens-healthineers.com, if you wish to discuss any initial questions with our recruitment team. The contact person handling this job ad is KatharinaRuhnke.

We care about your data privacy and take compliance with GDPR as well as other data protection legislation seriously. For this reason, we ask you not to send us your CV or resume by email. We ask instead that you create a profile in our talent community where you can upload your CV. Setting up a profile lets us know you are interested in career opportunities with us and makes it easy for us to send you an alert when relevant positions become open. Click here to get started.

Siemens Healthineers' recruitment is internally managed, with external support permitted only when a qualified supplier has established a formal contract with us. Unsolicited candidate submissions and referrals, absent a current supplier contract, do not establish consent and are ineligible for fees. We delete and destroy unsolicited information, thus, would recommend you refrain from any such practices. Your adherence to our policies is appreciated.

Siemens Healthineers Germany was awarded the Great Place to Work® certificate.