IT Security & Resilience Engineer (m/w/d) with a focus on vulnerability management

Reference number: 16921 - Location: Stuttgart, Leipzig or Berlin - Company: LBBW - Functional area: Information technology - Full time / part time: 100

LBBW is one of Germany's leading banks and is an innovative company in the financial sector. In addition to traditional banking services, we focus on the areas of digitalization, sustainability and international markets. We offer an environment that promotes personal and professional development. With more than 10,000 employees, we shape the future of the financial world - Together #NeuesSchaffen

The IT-Governance & Cyber Defence department ensures secure, transparent and efficient IT across the Group. We define responsibilities, ensure compliance with regulatory requirements and anchor IT risk management as a control process. With a strong focus on operational IT security, we make processes robust and sustainable - for a stable and secure IT environment throughout the LBBW Group. The key tasks of the IT Security Operations group are the control of the further development of IT security solutions, detection of vulnerabilities, consulting of IT units in puncto IT security, controlling the authorization management of FI TS within the information technology and identification of IT risks.

Responsibility for technical and process IT security measures with focus on vulnerability management Establishment, operation and further development of pragmatic security mechanisms within the vulnerability management according to the Bank’s need for protection, risk profile and objectives, with a focus on operational ability, cost-effectiveness and regulatory requirements Support and coordination in IT changes (projects and transformations) as well as active participation of IT security target images, strategies and bank-wide minimum standards Technical monitoring of audits and regulatory audits as an interface between operation, architecture, 2nd line and external partners Control of external service providers in the context Definition of guidelines, processes and work instructions for vulnerability management and preparation of safety-relevant topics for management and bodies Take over professional mentoring within the team and promote knowledge sharing across platform boundaries

Complete study in the field of computer science, IT security or comparable qualification or comparable further education More than five years of relevant professional experience in vulnerability management in regulated environments (banks, insurance, KRITIS) Certifications such as CISSP, CISM, CEH, CompTIA Security+ or comparable Understanding IT infrastructures (servers, clients, networks, cloud environments) and their curing Proven experience in managing group-wide security initiatives or change projects Recognizing and implementing the needs of internal customers taking into account all requirements Self-assessment of complex facts and solution-oriented processing of these by means of suitable methods also in superordinate contexts Negotiation security: German C1, English B2/C1 Excellent presentation and moderation skills Appropriate argumentation and enforcement power up to management level

Modern talent management for career development Active promotion of a good reconciliation of work and private life (including flexible working hours, sabbaticals and the possibility to work in part on a mobile or home office) Attractive occupational pensions Comprehensive health management (e.g. cooperation with gyms, occupational medical service, preventive examinations) Interesting leasing possibilities, e.g. Job-Rad, Tablet, Smartphone Great lunch offers (bio, vegetarian or vegan) Several daycare centres