Senior Cybersecurity Engineer
Munich, Germany
Applications have closed
Company Description
Founded in Munich, Germany in 1989, Brainlab develops, manufactures and markets software-driven medical technology, enabling access to improved, more efficient, less-invasive patient treatments. Our key to success is our creative, talented and hard-working team, which consists of around 2000 dedicated and inspiring individuals in 25 locations worldwide. To succeed in reaching our targets, we are seeking committed colleagues who can stand behind our core values curious, authentic and useful:
Job Description
Brainlab has been innovating for over a quarter century in the areas of surgery and radiation therapy, developing hardware and software technology to help healthcare providers, physicians and their patients fight cancer and other conditions of the brain and body. In recent years, there has been a tremendous increase in the volume and complexity of data acquired throughout the patient diagnosis and treatment process. New emerging technologies such as cloud computing and Big Data analysis are gaining significance also in the medical field.
At Brainlab, most applications are expected to become more and more anticipative and intelligent by understanding and evaluating all kinds of information surrounding the patient. Protecting the information technology used for analysis and treatment of patients as well as the data accumulated during this process is paramount. We are thus strengthening our Munich-based cybersecurity team with a passionate cybersecurity Engineer that brings experience cybersecurity, an open minded and “can-do” personality and an urge to move things forward. With your expertise and ideas, you will support us in our effort to maintain and improve the confidentiality, integrity and availability of Brainlab’s product and solution portfolio.
In this position, you will
- support the Brainlab development teams with your cybersecurity expertise by jointly creating sound and secure solutions addressing confidentiality, integrity and availability targets
- execute threat analysis on our products and services
- conduct internal vulnerability scans and penetration tests on our products and services
- support externally executed penetration tests
- assess newly discovered vulnerabilities (CVEs) and determine if they are applicable to our products and services
- support in defining and creating a testing environment to support cybersecurity analysis (e.g. for fuzz testing, continuous vulnerability monitoring of 3rd party libraries, penetration testing “tool belt”)
- understand external (regulatory) cybersecurity requirements and assess how they are mapped to the Brainlab products and services
- optionally implement proof of concepts for cybersecurity related concepts (e.g. encryption for data-at-rest, pseudonymization, authenticated messages)
- support our activities to comply and maintain cybersecurity related standards
- monitor and assess new technologies and tools aiding our cybersecurity efforts
- contribute to our success with your creative ideas, your independent and self-responsible way of working
Qualifications
- Passion for innovative high-tech products and for technological advancement
- Excellent communication, collaboration and documentation skills (fluent in English)
- Profound understanding of cybersecurity concepts and supporting technologies
- Experience in threat modeling (preferable using STRIDE or the OWASP risk framework)
- Hands on experience with Linux based penetration testing distributions
- Concepts around CPE, CVE, MITRE ATT&CK®, CWE™
- Professional experience in computer science
- Degree in Computer Science or related discipline
- 3+ years professional experience in a role related to cybersecurity
- Ability to quickly grasp new contexts and get familiar with new tools
- Well-organized and clearly structured, agile working style
- Open mind-set, finding creative solutions for challenges on a daily basis and willing to collaboratively work with colleagues to excel our cybersecurity activities
- "Hands on" mentality
Additional Information
- A mutually-supportive, international team
- Meaningful work with a lasting impact on medical technology
- 30 vacation days, plus December 24th and December 31st
- Flexible working hours as well as hybrid work model within Germany
- Parking garage and safe underground bike storage
- Award-winning subsidized company restaurant and in-house cafes
- Variety-rich fitness program in our ultra-modern 360m2 company gym
- Regular after work, team, and company events
- Comprehensive training and continuing education opportunities
Ready to apply? We look forward to receiving your online application including your first available start date and desired salary.
Contact person: Géraldine Ferrer
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Big Data Cloud Computer Science Encryption Linux MITRE ATT&CK Monitoring OWASP Pentesting Vulnerabilities Vulnerability scans
Perks/benefits: Career development Flex hours Flex vacation Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs