Red Teaming - Information Security Specialist - Group Security (f/m/d)
Date: 5 Apr 2024
Location: Frankfurt am Main, DE
Company: Deutsche Börse Group
Area of work:
Coordinatation or orchestration of Red Team tests.
Your responsibilities:
- This position supports Group Security to provide internal Red Team services including Key process Indicators.
- Analysis of internal information security control requirements and external regulatory requirements.
- Supports planning and coordination of red team tests with preparation, test and closing phases.
- Overlooks, monitors and runs the red teaming service and if required escalates derivations.
- Owns service deliverables like documentation.
- Works closely together with various business-related stakeholders but also can align with technical stakeholders e.g. that perform the red teaming.
- Prepares topic related presentations in various contexts e.g. during Red Team tests, for internal awareness and knowledge sharing, update of various stakeholders.
- Management of information security related audits, possible findings and support to resolve the same.
- Close cooperation with internal functions like Group wide IT teams, Risk Management, compliance, data protection, internal audit, and with service providers e.g. cloud service providers.
Your profile:
- University degree or education in the area of information security, management information security or comparable.
- Long-term experience in Cyber Security, the NIST Cyber Security framework, ideally in the financial industry or comparable regulated business environment.
- Ability to structure complex matters and drive to resolution.
- Leadership skills to build collaboration teams cross organizations, and motivate to follow ideas and direction.
- Distinctive knowledge in threat and vulnerability management.
- Experience in latest technologies to address Security Monitoring, Control and Remediation services.
- Experience in penetration testing or red teaming is a plus.
- Knowledge of general legal and regulatory conditions and requirements, for example ISO Standards; NIST Standards and similar.
- Formal certification is an advantage.
- Preferably project management experience.
- Strong communication and interpersonal skills with talent in building relationships with professionals of all organisational levels.
- Strong analytical skills, reliability, and direct responsibility.
- Ability to firmly present complex topics in an understandable manner.
- Proficiency in written and spoken English and German is a must.
Additionally, you need to be a team player with good communication skills, highly motivated, flexible.