Aktiviere Job-Benachrichtigungen per E-Mail!

Security Engineer - Project 3

NAXCON GROUP

Hamburg

Vor Ort

EUR 55.000 - 75.000

Vollzeit

Heute

Sei unter den ersten Bewerbenden

Zusammenfassung

A technology consulting firm in Hamburg is seeking an experienced Security Engineer to focus on application security and conduct security assessments. The ideal candidate should have at least 2 years of experience with agile methodologies and be business fluent in German. This role offers competitive compensation and the opportunity for professional growth in a supportive team environment.

Leistungen

Professional growth opportunities

Regular team events

Language development support

Dedicated contact person

Competitive compensation package

Qualifikationen

At least 2 years of experience with agile development in Scrum or Kanban.
Business fluent in German.
Experience in application security, especially with regard to digital products.
Experience with cryptography algorithms.

Aufgaben

Assess and document functional requirements & technical solutions.
Conduct security assessments of applications and networks.
Engage in vulnerability assessment and penetration testing.
Develop a secure software development life cycle.

Kenntnisse

Agile development in Scrum or Kanban

JIRA

Confluence

Application security

OWASP standards

Security assessment of mobile applications

Security assessment of web applications

Security assessment of backend applications

Network and cloud security assessment

Scripting language knowledge

Tools

SAST & DAST tools

Spring Boot

Security Engineer - Project 3 at NAXCON GROUP

Position located in Hamburg, Germany.

Position Details

Title: Security Engineer - Project 3
Company: NAXCON GROUP
Location: Hamburg, Germany
Employment Type: Full-time, 2-4 days on-site per month
Seniority level: Mid-Senior level
Job Function: Information Technology
Industries: IT Services and IT Consulting

Minimum Requirements

At least 2 years of experience with agile development in Scrum or Kanban
At least 2 years of experience with JIRA and Confluence
At least 1 year of experience with documenting functional requirements & technical solutions
Business fluent German
At least 3 years of experience in application security, especially with regard to digital products
At least 2 years of experience with OWASP standards
At least 2 years of experience in the security assessment of mobile applications
At least 2 years of experience in the security assessment of web applications
At least 2 years of experience in the security assessment of backend applications (backend for frontend)
At least 2 years of experience in the security assessment of networks and cloud solutions
Software development skills in at least one scripting language and a framework such as Spring Boot

Additional Requirements

Experience with BSI basic protection requirements
Experience in security-critical projects with knowledge of relevant standards, e.g., ISO 27001
Experience in dealing with threat and security analyses as well as risk assessments
Experience in authorization frameworks, in particular Open Authorization 2.0 and
OpenID Connect
At least 1 year of experience with knowledge of public key infrastructures, X.509
Experience in assessing and exploiting vulnerabilities (e.g., through penetration tests)
Experience in projects with data protection requirements according to EIDAS Substantial/High
Experience in projects with data protection requirements according to EIDAS Substantial/High
At least 1 year of experience with key exchange procedures
Experience in cryptography algorithms
At least 1 year of experience in software development (application of different programming languages)
Experience in source code analysis with regard to security
Experience with SAST & DAST tools in software development
Experience in the statutory health insurance environment
Experience with security-compliant development, e.g., according to BSI-TR-03107 & BSI-TR- 03161
At least 1 year of experience in the (further) development of a secure software development life cycle.
Experience with documentation according to standards such as Arc42
Several years of development experience in multiple frameworks
Experience with telematics infrastructure such as electronic patient records
Experience with Gematik specifications
Experience in penetration testing
Experience in threat modeling

What We Offer

Join a cosmopolitan and internationally mixed team: We welcome individuals from all backgrounds and cultures to contribute their unique perspectives and talents to our team.
Polish your German language skills: If you are looking to improve your German language skills, we offer a supportive environment where you can practice and develop your language abilities: whether you are a beginner or an advanced speaker.
Benefit from a fixed contact person from the company: We understand the importance of having a reliable point of contact within the company. That's why we assign a dedicated contact person who will provide guidance and support throughout your employment with us.
Professional growth and development: With us, our engineers can immerse themselves in new industries or projects after just 1-2 years and actively transfer knowledge.
Enjoy regular team events with the company: We believe in the power of team building and fostering positive relationships within the workplace. That's why we organize regular team events to promote collaboration and strengthen our team bonds.
Competitive compensation package: At NAXCON, we believe that our engineers are our greatest asset. That's why we offer a comprehensive and competitive compensation package that includes a salary commensurate with experience and expertise.

Referrals increase your chances of interviewing at NAXCON GROUP by 2x

Get notified about new Security Engineer jobs in Hamburg, Hamburg, Germany.

Hol dir deinen kostenlosen, vertraulichen Lebenslauf-Check.

eine PDF-, DOC-, DOCX-, ODT- oder PAGES-Datei bis zu 5 MB per Drag & Drop ablegen.