• Responsible and ensuring that security standards and controls are applied in their IT environment
• Continuously improve the implementation, operation and management of the identity and access management processes
• Perform user access management controls (documentation, process-flow chart, narrative, presentation, etc.)
• Review IT changes in the system related to access management
• Monitor privileged access accounts
• Apply analytical skills to identify opportunities for process improvement and automation
• Maintain strong communication within the team to manage expectations and ensure that deadlines and quality expectations are met
• Review, analyze and apply IT Security Policies, Procedures and Guidelines of the International government
• Provide strategic assessments on technology trends and emerging technologies
• Conduct feasibility studies, technology assessments and cost-benefit analyses
• Evaluate and assist in the selection of enterprise-wide technology tools

Skills: Access Management, Privileged Monitoring, Process Improvement, Analytical, Communication, Policy Review, Tech Assessment, Tool Evaluation

• Work on various projects with a focus on Security Strategy, Risk and Compliance or Security Governance
• Collaborate closely with clients to analyse business requirements for security solutions
• Design, implement and integrate solutions, e.g., ServiceNow for Security Incident management, Vulnerability response, Governance, Risk and Compliance and Vendor risk management
• Maintaining and supporting the existing network security infrastructure
• Designing and implementing infrastructure solutions to support growing global business
• Liaising with network architects, enterprise architects, and key stakeholders to design and implement new projects
• Participating in Operations and Maintenance tasks such as lifecycle management, software upgrades, and deployment
• Design and implement GRC services based on IT knowledge, functional and technical understanding of security services
• Advise clients and convince them of the importance of data protection and security
• Develop sales and delivery skills to create new commercial opportunities and convert them into GRC projects to build strong client relationships

Skills: Security Strategy, Risk Compliance, Security Governance, Solution Design, Network Security, Infrastructure Design, Stakeholder Liaison, GRC Implementation

• Work in the Security Operations team, as well as work closely with Security architects, IT Operations and Cloud Operations to ensure QIAGEN is appropriately protected and monitored
• Act as subject matter expert on security operations requirements, utilizing this knowledge to advise IT teams and business stakeholders
• Support policy and security control development, and support risk assessment efforts
• Provide guidance, interpretation and education on security topics for IT and business stakeholder related to their projects and applications
• Support QSIRT core security services
• Respond to SOC escalations
• Monitor for suspicious behaviour and ensure that potential security issues are proactively identified and handled appropriately in coordination with the wider security team and business support teams
• Assist in cyber events and investigations, including but not limited to security analysis
• Collaborate with the core business partners and operations teams to improve the security posture that meets the evolving business needs
• Collaborate and build relationships with key business partners for continued security education and awareness
• Act as subject matter expert and support business and operations teams in all aspects of security requirements, utilizing this knowledge to advise business units and support policy development
• Troubleshoot and resolve complex security issues and apply fundamental systems security principles and understanding, skills, expertise, and experience to support the planning, design, development, and implementation of security controls
• Participation in special projects and workgroups

Skills: Security Operations, Threat Monitoring, SOC Response, Risk Assessment, Policy Development, Security Guidance, Incident Analysis, Stakeholder Collaboration

• Responsible for managing compliance level to the whole Daimler Security Policy and Risk Management Framework in Daimler Greater China and associated Legal Entities
• Support in IT security-related audits and drive security self-assessments
• Support in Cyber Security Law-related assessments and filling work
• Support in cloud risk analysis
• Responsible for IT Security process, policy and regulations management
• Provide security support and consulting during project rollout and lead the execution of IT security projects
• Security incident and event management, vulnerability mgmt., risk analysis, security findings mitigation, penetration testing, security architectural support
• Monitor information security and ensure transparency
• Ensure IS Standards and controls are considered in all application life cycles
• Responsible for the analysis of security issues arising and providing solutions
• Organize information security training to ensure an increase in understanding and awareness of information security

Skills: Compliance Management, Security Audits, Cloud Risk Analysis, Policy Management, Security Consulting, Incident Management, Vulnerability Management, Security Training

• Perform Secure Code Reviews of the application code using both Manual and Automated approaches
• Conduct security assessments such as penetration and vulnerability tests
• Keep updated on knowledge of the IT security industry, including awareness of new or revised security solutions, security standards, trends / best practices, offensive techniques and tools
• Perform Blackbox/Graybox testing of Web/Mobile/Thick client applications
• Perform Network Vulnerability Assessments and Penetration Testing
• Risk Evaluation of observed vulnerabilities based on common risk scoring techniques such as CVSS
• Create a detailed report of findings and recommendations after testing is complete and present to stakeholders
• Coordinate with developers/stakeholders on the findings for appropriate fixes
• Stay up-to-date on current tools, techniques, and vulnerabilities to incorporate into testing practices

Skills: Code Review, Penetration Testing, Vulnerability Assessment, Application Testing, Network Testing, Risk Evaluation, Reporting, Stakeholder Coordination

• Understanding of defensive and offensive cybersecurity technologies and methodologies
• Good client relationship management skills
• Knowledge of cyber security standards such as ISO27001, NIST, CIS Critical Security Controls
• Enthusiasm and passion coupled with strong reasoning, communication skills and a pragmatic outlook
• Extensive experience in operating and managing defensive control sets and assessment tools
• Strong technical knowledge of defensive security technologies and processes
• Experience in assessing foundational cybersecurity controls
• Proficient in operating and reporting from offensive security tools and frameworks such as MITRE ATT&CK, Nmap, Kali, Burp Suite, Metasploit, along with common TTPs used to exploit vulnerabilities in networks and applications
• Experience in defining and operating phishing campaigns
• Experience in performing and reporting technical security risk assessments
• Exposure to cloud security technologies
• Ability to report, present and justify conclusions to project teams and business stakeholders
• Good knowledge of infrastructure, system administration and web applications

Qualifications: BS in Computer Engineering with 7 years of Experience

• Information Security experience or equivalent, achieved security certification (CISSP, CEH or CASP+)
• Hands-on experience with several recognized technology vendors 
• Advanced expertise in designing and developing security solutions/architectures
• Experience with offering technical consultancy and support to external clients
• Knowledgeable of current regulations, standards, and security best practices for different types of industries
• Able to identify opportunities for the security business
• Experience in operating network security
• Familiarity with operating and deploying next-generation firewalls, Palo Alto Firewalls
• Team-oriented, detail-oriented, efficient, and solution-oriented attitude
• Superb analytical and problem-solving skills
• Excellent communication and interpersonal skills
• Flexibility and ability to work independently and in a team
• Good Polish and English skills (written and spoken)

Qualifications: BS in Computer Science with 6 years of Experience

• Professional experience in consulting and the ability to think and act strategically / entrepreneurially
• Experience in the application of standards such as ISO 27001, BSI IT-Grundschutz or IEC 62443
• Knowledge and experience in analyzing problems and developing customized solutions
• Able to work in an international environment
• Able to write reports for different stakeholders
• Experience in a comparable role and in large and/or international projects
• Strong analytical and conceptual skills to find goal-oriented solutions
• Good communication and presentation skills as well as assertiveness 
• Able to show strengths both as a team player and individually
• Experience and fluent written and spoken German and English

Qualifications: BS in Network Engineering with 4 years of Experience

• Experience with the coordination of junior consultants' work
• Strong written and verbal communication, presentation, client service and technical writing skills
• Excellent knowledge of Slovak and English
• Prior consulting industry experience
• Excellent analytical skills and logical thinking
• Working experience in IT Infrastructure operation and/or support
• Fundamental knowledge on IP networking (e.g., TCP/IP, routing, etc.) and operating systems (e.g., Windows, Linux, etc.)
• Critical thinking and problem-solving skills and a passion for cybersecurity

Qualifications: BA in Management Information Systems with 2 years of Experience

• Working knowledge and hands-on experience in a variety of operating systems, ranging from Windows NT to Windows 10 and Linux Distributions
• Working knowledge and practical experience of IT environments
• Working knowledge and hands-on practical experience of Operational Technology environments including DCS, EWS, HMI, IIoT, PLC, RTU, SCADA, SIS, etc.
• Experience in security engineering and associated solutions (Endpoint Protection, IDS/IPS, Firewalls, etc.) for IT and/or OT environments
• Working knowledge and understanding of networking technologies including architectures, key components, and common IT/OT protocols
• Experience working within infrastructure sectors such as Energy (Oil, Gas, Nuclear), Transportation (Rail, Road), Utilities (Electrical, Water)
• Ability to think strategically and demonstrate an appreciation of strategic alignment between security and the business domain
• Understanding of a range of security frameworks with a focus on at least one such as SOGP, NIST, or PCI-DSS
• Ability to provide clear and concise security consultancy covering multiple security controls
• Knowledge of industry standards and best practices, including ISF Standard of Good Practice (SOGP)
• Strong written and verbal communication skills
• Understanding of change management processes and Agile methodologies

Qualifications: BS in Information Systems Security with 7 years of Experience