System Engineer Managed Services Microsoft Backend (m/f/d)

Perform regular vulnerability scans of the entire IT infrastructure (network, servers, clients, cloud services) Analysis and assessment of identified vulnerabilities regarding their potential business risk (severity, exploitability, asset criteria) Defining the order of fixation based on the risk to focus limited resources on critical areas Planning, coordination, testing and monitoring of the deployment of security patches and software updates on all affected systems Close coordination with IT operating teams (network, system administration, application development) to effectively implement remedial measures Tracking the patch status, identifying failed patches and creating detailed reports for management and auditors Ensuring compliance with relevant safety standards and legal regulations (e.g. BSI IT-Grundschutz, ISO 27001) Keeping detailed records of all patching activities, test results and fixed issues

A completed study in the field of computer science, IT security or comparable training with relevant professional experience minimum. 7-year experience in IT infrastructure in server management (Windows), network protocols and endpoint protection Expertise in dealing with vulnerability scanning tools (e.g. Tenable Nessus, Qualys, Rapid7) Experience with patch management systems (e.g. Microsoft SCCM/MECM, WSUS, Automation Tools, NinjaOne) Understanding common evaluation methods such as CVSS (Common Vulnerability Scoring System) and CVEs (Common Vulnerabilities and Exposures) Skills in script languages (e.g. PowerShell, Python) for automating processes are of advantage Knowledge of ITIL processes, especially in release and change management Quickly capture complex technical relationships and their risk assessment Impressed communication skills for coordination with different teams and for understandable reporting to management Ability to troubleshoot and quickly resolve problems that can arise through updates Structured operation for planning and monitoring of parallel patching cycles The cyber threat landscape is constantly changing, so continuous training is essential Certified Ethical Hacker (CEH), GIAC certifications (e.g. GCIH, GCIA) or specific tool certifications underline the expertise

Flexible working hours and mobile office in coordination with the supervisor Discounts thanks to the “Corporate Benefits” portal Bike leasing Free drinks & fruit Further training Employee events