IT Security Specialist

Tasks

As an IT security specialist, you will be responsible for the operation, standardization, and documentation of security controls to ensure consistent implementation across on-premises, cloud, and Microsoft 365 environments. Your responsibilities will include:

• Implementing and operating internal security controls across on-premises systems, cloud platforms, and Microsoft 365
• Ownership and operation of critical safety tools, including:
  • Data Loss Prevention (DLP)
  • Microsoft Purview (Compliance, Information Protection, DLP)
  • Microsoft Defender for Cloud Apps (MCAS)
  • Intune / MDM and Endpoint Security Controls
  • Zscaler
• Define, consolidate, and document security standards, configurations, and processes to ensure:
  • a unified security foundation
  • clear ownership structure, versioning, and annual review cycles
• Define and maintain consolidated security processes to improve governance and ensure structured implementation of security changes
• Implement and coordinate vulnerability management, including assessment, prioritization, remediation, and validation
• Identifying, assessing, and escalating security risks in IT operations, the cloud, the workplace, projects, and SOC activities
• Identify and highlight violations or deviations from approved safety standards to ensure that they are corrected or formally approved
• Supporting cybersecurity incidents, including investigation, resolution, documentation, and closure

Requirements

We are looking for a candidate with:

• 3–5 years of experience in IT / information security or security operations
• Extensive hands-on experience with the Microsoft security stack (Purview, DLP, MCAS, Intune/MDM) and cloud-based and on-premises security tools
• Experience with zero-trust security architecture
• Experience with cloud security
• Experience in control-based and audit-driven environments (ISAE 3000, ISO 27001, NIST, CIS)
• A structured, documentation-driven work style with a strong awareness of risk
• Excellent English skills; knowledge of German is a plus, but not required

Certifications and Training

• Cybersecurity certifications (e.g., CISSP, CISM, CISA, ISO 27001, Microsoft Security) are a major plus
• Relevant academic background (a bachelor’s or master’s degree in computer science, information security, or a related field) is a plus

We offer

We offer an exciting and forward-looking work environment with a wide range of responsibilities, a motivated and supportive team, and a professional workplace. You’ll enjoy attractive working conditions, including a 40-hour workweek, flexible hours, the option to work from home, and five weeks of vacation.