Penetration Tester - Offensive Security Specialist

Job description, responsibilities and duties

Do you want to help create the future of healthcare? Siemens Healthineers is a place for people who dedicate their energy and passion to this greater cause. It reflects their pioneering spirit combined with our long history of engineering in the ever-evolving healthcare industry.

We offer you a flexible and dynamic environment where you have the space to stretch beyond your comfort zone in order to grow personally and professionally. Sound interesting?

Then come in and join our team as Penetration Tester - Offensive Security Specialist!

Your mission and responsibilities:

• You conduct continuous penetration tests within the company to identify vulnerabilities and weaknesses
• You prioritize and define the offensive activities being Business impact oriented

Task and responsibilities:

• Understand the purpose of the assets to be pentested, learning the relevance to the Business, and helping to identify the worst case scenarios to focus on their exploitation
• Execution of the Penetration test activities, registering all the conducted actions, and following trendy TTPs that real attackers are abusing on the wild
• Documentation of the results of the Penetration test activities, including technical documentation
• Support, on demand, to the penetration testing lead on organizing, following up and reporting Pentest related activities
• Creation and maintenance of offensive-related toolset, including applications and underlying infrastructure
• Automation of offensive-related scans, including detection, exploitation and reporting
• Support to the IT administrators on explaining the exploitation of findings, as well as proposing recommendations and best practices for remediation
• Support, on demand, to Red Team activities

Qualifications:

• You have 5+ years of relevant work experience in Offensive cybersecurity, i.e. penetration testing or red teaming
• You hold relevant Industry Certifications such as OSCP, GPEN, Pentest+, etc.
• You have advanced English and communication skills: clear and concise communication; able to address stakeholders of different backgrounds and technical expertise
• You have deep knowledge regarding infrastructure solutions, cloud technologies, network solutions and web technologies.
• You are knowledgeable of security frameworks and methodologies for example: MITRE ATT&CK, Cyber Kill Chain, OWASP, NIST, etc.

Additionally

• You are analytical and work methodically
• You enjoy self-learning and like staying aware of new trends, technologies and tools
• You work or have been worked in globally distributed teams
• You are a quick learner and have the aptitude to get into new technologies and architectures

Being part of our team:

Our global team: Siemens Healthineers is a leading global medical technology company. 55,000 dedicated colleagues in over 70 countries are driven to shape the future of healthcare. An estimated 5 million patients across the globe benefit every day from our innovative technologies and services in the areas of diagnostic and therapeutic imaging, laboratory diagnostics and molecular medicine, as well as digital health and enterprise services.

Curious about our culture? Our culture embraces different perspectives, open debate, and the will to challenge convention. Change is a constant aspect of our work. We aspire to lead the change in our industry rather than just react to it. That’s why we invite you to take on new challenges, test your ideas, and celebrate success.

As an equal-opportunity employer we are happy to consider applications from individuals with disabilities.

Basic wage component (gross) and other rewards : starting from 3500 EUR brutto /month + VAR*

*We are required by law to disclose basic wage component (minimum salary) for the advertised positions. We carefully consider your professional qualifications and experience in our compensation package and/or when offering you other positions.

Our goal is to pay our employee's fairly, with regard to the market situation and we are ready to welcome high-quality candidates in our team.

Required education, skills and personality requirements

Required education
University education (Bachelor's degree)
University education (Master's degree)

Language skills

We offer

• Variable and Christmas bonus
• Hybrid type of work – combination of telework and work from office
• Flexible Working Hours
• Bridge days – free extra paid leave 6 days per year
• 3 sick days per year (no doctor’s permit needed)
• In case of sickness 100% salary reimbursement 20 days/ year, this includes max. 10 days/ year for of family care
• Additional pension plan
• 300 EUR for regeneration of work force via cafeteria system
• Wellbeing program – Psychological, Legal and Financial Councelling
• Family care program (subsidy for newborns, maternity leave, kindergardens, summer camps)
• Retention program (work anniversary, life anniversary, employee loans)
• Training and development program (business and product trainings, e-learning, language courses, soft skills trainings,…)
• Adjustable standing desk as a standard
• Participation on world famous IT conferences like Microsoft IGNITE for best employees
• Wide project portfolio in healthcare domain and job rotation within company (Cybersecurity, Artificial Intelligence, Healthcare IT services, …)