Lead Information Security initiatives at Starling, the UK's leading digital bank. Manage policy frameworks, team performance, and ensure compliance with security standards.
About the role
- Senior Consultant in Penetration Testing for a growing IT consulting firm. Focused on identifying vulnerabilities and enhancing IT security for clients across various sectors.
Responsibilities
- Apply your hacking skills effectively in web, mobile app, and infrastructure penetration tests or red teaming projects — remotely and on client sites
- Explain test results in detailed project reports and persuade clients with clear recommendations to improve their IT security
- Continuously take on new topics and learn current technologies; contribute to the development of internal tools or systems and explore new tactics, techniques, and procedures (TTPs)
- Stay up to date through company-sponsored conferences, training, experiments, regular knowledge transfers, and joint internal CTF and HackTheBox sessions
- Gain exposure to adjacent areas such as incident response/forensics or configuration audits
- Bring ideas for new projects and play a visible role in building and expanding our client relationships
Requirements
- Several years of experience and broad technical knowledge across multiple areas (e.g., network fundamentals, operating system basics, cloud platforms, Active Directory, databases, firewalls, web technologies and their common security issues)
- Experience with intercepting proxies (e.g., Burp Suite), C2 frameworks (e.g., Cobalt Strike), vulnerability scanners and common operating systems, and a strong desire to quickly become familiar with new tools
- Proven routine in producing reports and presentations in German and the ability to communicate content clearly
- University degree or professional experience in this field, relevant certifications or self-taught expertise, with the willingness to further develop subject-matter expertise
Benefits
- We subsidize not only your company bike (JobRad) but also your public transport (ÖPNV) ticket, helping both the environment and your wallet
- We support your gym membership and preventive healthcare
- We enable compatibility between family and work according to your needs, with the option for mobile working
- We offer 30 days of vacation per year. You only need to take one day of leave for Christmas Eve and New Year's Eve
- If you desire a longer break, we offer the option of a sabbatical
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Technical Operator handling ticket resolution and IT troubleshooting in a structured team environment for Managed Security Services. Interfacing with varied technical tools to support international clients.
Support Health, Safety, and Security processes at East West Rail. Coordinate training, manage budgets, and ensure compliance with regulatory standards.
AI Security Engineer focusing on adversarial machine learning and enterprise security architecture. Leading red team engagements and translating technical risk into governance frameworks.
AI Security Architect leading adversarial testing for enterprise AI products, integrating security findings into governance frameworks. Collaborating with engineering and compliance functions in a hybrid work environment.
Leading GRC & IT Security Consulting at Orange Cyberdefense in Zürich. Drive business growth and manage client relationships while leading a technical consulting team.
Senior Endpoint Security Engineer at Metric5 managing CrowdStrike Falcon deployment for Department of Treasury. Overseeing sensors rollout and resolving high - tier architectural issues in diverse IT environments.
Cybersecurity Sales Specialist responsible for driving sales across Fortune 250 accounts. Engage with C - suite leaders to enhance cybersecurity solutions and strategies across global enterprises.
Sales Specialist for Data Security driving growth in Public Sector and MidMarket teams at Proofpoint. Partnering with core sales reps and delivering value in Data Security portfolio.
Principal Product and Process Security Certification Expert at NXP driving security evaluation and certification for embedded products. Responsible for compliance with cybersecurity standards and certifications in emerging markets.