Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Berlin
- Working Model
- Onsite
Job Summary
In this position, you will plan offensive security attacks, develop your own tools, and analyze vulnerabilities to improve the company's security mechanisms while applying proven tactics against threats.
Job Technologies
Your role in the team
- You plan and execute Red Team and Purple Team engagements across the entire Schwarz Group, enjoying considerable freedom in implementation and the selection of attack targets.
- You are familiar with current threats, vulnerabilities, and exploits, and can assess their risk and impact.
- You identify vulnerabilities in programs, configurations, processes, or human behavior and develop techniques to exploit them.
- You plan and execute physical attacks ranging from lockpicking and covert entry to copying IDs and social engineering.
- You acquire knowledge about Advanced Threat Actors, their Tactics, Techniques, and Procedures (TTPs), and can apply them in your own attack scenarios.
- You develop and operate your own tools, including proprietary malware that can bypass common security and monitoring systems.
- You work closely with the Blue Team and support it in the continuous improvement of its protection mechanisms and processes.
- You plan and conduct tabletop exercises as well as Capture-The-Flag events.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- You have a quick grasp of new situations, tools, and technologies, and you can apply this knowledge rapidly.
- Your knowledge covers a wide range of attack methods and techniques, including post-exploitation and lateral movement.
- You have already worked as a penetration tester, red team operator, or security researcher.
- You are familiar with relevant attack tools and are experienced with network protocols and cloud security.
- You are proficient in scripting and programming languages such as Python, PowerShell, Go, C#, C++, or Rust to develop your own tools.
- You have a drive to identify weaknesses and engage with colleagues to address them.
- You stand out with strong analytical, communicative, and creative skills, enjoy working independently and in a team, and think like an attacker.
- You are certified in Offensive Security (OSCP, OSEP, OSED/E, CRTO, CRTE, etc.).
- You present yourself convincingly and confidently, communicating in both German and English.
Experience
- You have experience in Cyber Security, specifically in Offensive Security (Pentesting, Red Teaming, Ethical Hacking).
- You have experience in developing new attack techniques and bypassing typical security systems.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
Schwarz Unternehmenskommunikation GmbH & Co. KG
The Schwarz Group, based in Neckarsulm, is a significant German conglomerate and one of the largest retail groups in Europe. It operates over 13,900 stores under the brands Lidl and Kaufland and employs around 575,000 people.
Description
- Company Type
- Established Company
- Working Model
- Full Remote, Hybrid, Onsite
- Industry
- Trade