We are seeking a skilled Security Engineerspecialisingin vulnerability assessment and penetration testing. This role works closely with both the Jenkins platform team and thecustomersdevelopment teams toidentifyand remediate security weaknesses in infrastructure CI/CD pipelines and application code.

Roles and responsibilities:

• Conduct internal and external vulnerability scans; interpret findings for technical and non-technical audiences.
• Perform penetration tests on web applications APIs cloud environments and CI/CD pipelines.
• Operate andmaintainSAST / DAST / SCA tooling integrated into Jenkins pipelines.
• Triage CVEs and security advisories; assess impact and coordinate patching with platform engineers.
• Implement andvalidatesecurity hardening baselines for Jenkins Kubernetes and cloud infrastructure.
• Assist the Security Consultant Lead in threat modelling exercises.
• Produce clear actionable vulnerability reports and track remediation to closure.
• Support security incident response: containment evidence collection and timeline reconstruction.
• Maintain and update security testing playbooks and technical documentation.

Qualifications and Education Requirements:

• Bachelors degree in Cybersecurity Computer Science or equivalent practical experience.
• 4 years in information security with a focus on penetration testing or vulnerability management.
• Hands-on experience with penetration testing tools: Burp Suite Metasploit NmapNikto OWASP ZAP.
• Experience with SAST tools (SonarQubeCheckmarxSemgrep) and DAST tools (OWASP ZAP FortifyWebInspect).
• Solid Linux and Windows systemknowledge;scripting in Python or Bash.
• Familiarity with cloud security controls (security groups IAM policies SCPs Azure policies).
• Knowledge of OWASP Top 10 CVE / CVSS scoring and CWE categories.
• Ability to write clear evidence-backed vulnerability and penetration test reports.
• OSCP (Offensive Security Certified Professional) stronglypreferred.
• CEH (Certified Ethical Hacker) preferred.
• CompTIA Security oreJPT acceptable entry-level equivalent.
• Cloud security certifications (AWS Security Specialty GCP Professional Cloud Security Engineer) desirable.
• Language Skills: Excellent command of English (written and verbal) is mandatory. German language skills are strongly recommended and will be considered a significant advantage.

What makes us special:

• International team with a collegial working atmosphere and motivating team spirit.
• Lived culture of innovation and Regular employee events.
• Continuous internal and external training.
• Outstanding benefits health insurance multiple optional allowances and pension plans.
• Flexible working hours work from home option to ensure Work-life balance.
• An environment where you can develop and grow your skills capabilities and future.

Data privacy:

All the information shared in this document are only intended to the recipient. Any attempt to copy or re-use the document in part or whole will be considered a violation to the data privacy and will put the person under the law responsibility.