Experienced Associate / Pentester (RED Team) - Cybersecurity Audit (m/f/d) - DISW

Experienced Associate / Pentester (RED Team) - Cybersecurity Audit (m/f/d) - DISW

Start your cyber career with us! As part of the global Cybersecurity Assurance function, we help Siemens achieve its goals by providing objective, factual, and independent assurance to the Siemens Managing Board and Audit Committee. Our Cybersecurity team provides core assurance over the cybersecurity health of the company, including IT and OT infrastructures, product security, software development, and cloud environments.

What part will you play?

• Conduct Cybersecurity assessments across the Siemens landscape, including products, services, IT systems, factories, and software development centers. Perform ethical hacking activities, design attack scenarios for state‑of‑the‑art technologies, and translate technical findings into management information.
• Apply hacking principles and red team methodologies, tools, and techniques to mimic real‑world threat behaviors faced by the Siemens digital environment (cloud applications, on‑premise infrastructure, digital products and services).
• Work closely with cybersecurity experts from multiple industries to improve solutions by tackling root causes and finding innovative solutions to modern challenges.
• Independently conduct research on latest developments in cybersecurity technologies and threats and understand how these impact the Siemens environment.

What you need to make real what matters.

• Strong academic history (Master’s degree) in IT, Computer Science, or other related fields; certifications such as GIAC GPEN, OSCP, OSWE, CRTP, eJPT, CREST are a plus.
• Good scripting and programming skills and experience with Bash, Python, PowerShell, and C++/C#.
• Solid background and years of professional experience in penetration testing with a proven record of continuous career development.
• Demonstrated affinity to learn about the latest trends in cybersecurity and keep up to date in a continuously challenging environment.
• Experience with penetration testing / red teaming aspects such as application and software security, EDR and antivirus evasion, C2 setup, automation and scaling of security testing, Active Directory attacks.
• Demonstrated experience in capture–the–flag events, bug hunting, or vulnerability research (CVEs) is a plus.
• International mindset and willingness to travel and work in a diverse team.
• Great attitude, curiosity, and willingness to learn.

Working at Siemens Digital Industries Software

We offer flexibility with options for working at home or in the office. As an equal‑opportunity employer, we value diversity and do not discriminate on the basis of religion, color, national origin, gender, gender expression, orientation, age, marital status, veteran status, or disability status. We provide reasonable accommodation for individuals with disabilities. Please contact us to request accommodation.