Team Lead/Practice Manager - Cybersecurity Audit Red Team

Über uns

Als Teil der globalen Cybersecurity Assurance-Funktion helfen wir Siemens dabei, ihre Ziele zu erreichen, indem wir dem Siemens-Vorstand und Prüfungsausschuss objektive, faktenbasierte und unabhängige Zusicherungen geben. Als Geschäftspartner des Siemens-Managements nutzen wir unser Fachwissen in einer Vielzahl von Themen, um Veränderungen anzustoßen. Wir bieten ein lebendiges und integratives Umfeld, das eine Vielzahl von Perspektiven gewährleistet und ganzheitliches Denken ermöglicht.

Deine Aufgaben

• Lead and inspire our diverse, international ethical hacking team, managing Red Team activities within Cybersecurity audit engagements.
• Assess and anticipate threats from various actors, vulnerabilities, and weak points. Design and execute attack scenarios across Siemens IT/OT infrastructure to uncover risks.
• Drive high-impact assessments on Siemens IT systems, applications, products, services, factories, and software development centers. Communicate findings clearly to management and enable effective action.
• Own senior stakeholder relationships during Red Team engagements, ensuring trust and transparency.
• Collaborate with industry experts to tackle root causes and drive innovative solutions to modern Cybersecurity challenges.
• Represent Siemens globally at leading Cybersecurity conferences - as a participant and speaker.

Dein Profil

• 12+ Jahre Berufserfahrung in der Branche, mit nachweislicher Erfolgsbilanz im Bereich Offensive Security und kontinuierlicher Karriereentwicklung.
• Proficiency in one or more areas such as application and software security, Red/Blue Teaming, industrial IT/OT security solutions, network security, IT operations, and penetration testing.
• Proven ability to lead and inspire a team of highly skilled professionals. Experience in career development, coaching, and fostering a high-performance culture.
• Ability to translate technical findings into business impact and actionable recommendations. Strong understanding of risk management and how Cybersecurity ties into business objectives.
• Degree in IT, Computer Science, or related fields; certifications such as GIAC GPEN, GXPN, OSCP, or OSCE are highly valued.
• Strong scripting and programming skills in languages like Bash, Python, Ruby, PowerShell, and C++/C#.
• Demonstrated experience in Capture the Flag (CTF) events, bug hunting, or vulnerability research (CVEs).
• Fluent English is essential; additional languages (e.g., German) are a strong advantage for Siemens.

Unsere Benefits

• 2-3 days of mobile working per week as part of our global standard.
• An environment where everyone can bring their whole self to work and feel a true sense of belonging.
• 30 vacation days plus flexible working models to balance personal and family needs.
• Share matching programs to become a Siemens AG shareholder and a solid pension plan for long-term security.
• 50+ learning hours per year for both personal and professional development.