IT Security Assessments Coordinator

Job description

Tasks

• Process Management: Managing multiple penetration test projects simultaneously, from initiation and scope capture through to execution, reporting and remediation tracking. This includes defining test objectives, schedules and resource allocation with technical experts.
• Stakeholder Engagement: Function as central contact person for all activities in connection with penetration tests, coordination with internal stakeholders (application owners, development leads, product owners) and external security partners.
• Requirements gathering: organize and lead meetings to gather the necessary technical and business context to accurately outline penetration tests, ensure alignment between business requirements, technical constraints and security best practices.
• Vendor Coordination: Managing relationships with external penetration testing vendors, including communication, ensuring adherence to schedules and delivery dates, and reviewing terms of reference.
• Logistics & preparation: Coordination of preliminary activities, such as providing access data, setting up environments and ensuring all necessary documentation.
• Findings management: tracking identified vulnerabilities with our Jira and ServiceNow systems, following up with application owners and service providers to ensure timely remediation, providing guidance and answering questions about findings.
• Expert Liaison: Work closely with our senior security experts to ensure technical accuracy of test scopes, validate findings and escalate complex technical issues as required.
• Reporting & Communication: Provide regular updates and reports on penetration test progress, findings, remediation status and key risk indicators to the Head of Security Compliance and other relevant stakeholders. Ensure stakeholder queries are responded to on the same business day and provide clear timelines for resolution.

Requirements

Necessary requirements:

• Bachelor's degree in computer science, information security or a related field.
• 3+ years of experience in a project management or coordination role in an IT or security context.
• Proven ability to manage multiple projects simultaneously with strong organizational and time management skills.

Optional requirements (considered a plus):

• Experience in managing penetration testing or security assessment projects.
• Experience in working with external providers.
• IT or security certifications (e.g. CISSP, CISM, Security+, CEH, OSCP).
• Basic knowledge of infrastructure security concepts.
• Experience in the financial services industry.
• German language skills.