IT Security Engineer (m/f/x)

With the innovative Papyrus technology platform, we have succeeded in winning global corporations as long-term customers. Any customer-specific processes are designed and structured using low-code techniques and are available as immediately executable business applications. In this way, we make a significant contribution to the digital transformation of a wide range of industries.

IT Security Engineer (m/f/x)

As IT Security Engineer you will be an important team member in our HQ in Brunn am Gebirge.

Your duties & responsibilities will be:

• Develop, implement, and maintain information security policies, procedures, and controls aligned with ISO27001 standards
• Conduct risk assessments to identify potential threats and vulnerabilities
• Develop and oversee implementation of security plans and solutions to mitigate risks
• Monitor compliance with security policies and procedures
• Investigate incidents of data breaches and unauthorized access
• Coordinate with IT staff to ensure that security measures are properly implemented
• Keep abreast of latest security trends and technologies.
• Train and educate employees on information security best practices
• Prepare reports for upper management on the state of information security
• Respond to inquiries from various stakeholders on information security matters.
• Serve as a point of contact for all information security issues across our departments and teams
• Perform regular audits of systems and networks

Your skills and qualifications:

• Higher education in computer science, information technology, or related field.
• 3+ years experience in information security or related field.
• Strong understanding of security priciples (e.g. risk management, incident response, access control an cryptography).
• In-depth knowledge of security technologies, including firewalls, intrusion detection/prevention systems and encryption.
• Experience developing and implementing security policies and procedures.

Nice to have:

• CISM, ISO 27001, CISSP or similar certification
• GIAC, SANS or other advanced security certification
• Experience with SIEM (Security information and event management) tools
• Knowledge in vulnerability assessment tools (e.g. Qualys, Nessus, Nexpose)
• Experience with penetration testing tools (e.g. Metasploit, Burp Suite or Nmap)