What awaits you
Are you looking for a new challenge in a forward-thinking company that truly adds value to society?
Do you have an intrinsically motivated hands-on mentality, and is security deeply embedded in your DNA?
Do you thrive in a dynamic environment and value flat hierarchies just as much as short communication paths?
Is it important to you to work in an authentic and appreciative environment where our values are not just empty words but a lived culture?
Then we are exactly the right company for you to continue growing and be successful â and could you be our new hero?
DRACOON stands for making the world a bit safer and giving back data sovereignty. Behind our team are unique individuals who live this mission and are committed to it.
In a fully remote, hybrid, or Regensburg-based setting, we are looking for a dedicated and ambitious Security Analyst / Security Researcher* (m/f/d) in full-time.
Your Tasks:
Start Date: December or by arrangement
Compensation: By arrangement
Do you have an intrinsically motivated hands-on mentality, and is security deeply embedded in your DNA?
Do you thrive in a dynamic environment and value flat hierarchies just as much as short communication paths?
Is it important to you to work in an authentic and appreciative environment where our values are not just empty words but a lived culture?
Then we are exactly the right company for you to continue growing and be successful â and could you be our new hero?
DRACOON stands for making the world a bit safer and giving back data sovereignty. Behind our team are unique individuals who live this mission and are committed to it.
In a fully remote, hybrid, or Regensburg-based setting, we are looking for a dedicated and ambitious Security Analyst / Security Researcher* (m/f/d) in full-time.
Your Tasks:
- Analyze: Assess reported vulnerabilities, evaluate risks using CVSS methods, and determine their impact.
- Review: Conduct product code reviews with a strong focus on security to ensure robust defenses.
- Consult: Provide expert guidance in design and security reviews for the development of new features.
- Execute: Perform white-box security scans and apply system/application hardening measures.
- Research: Investigate, evaluate, and integrate new security technologies and tools within CI pipelines.
- Develop: Create automation and security tools to enhance the overall security posture of the organization.
- Document: Record security fixes meticulously and support customer service by preparing security advisories.
- Maintain: Ensure comprehensive documentation of security issues and manage CVE filings.
- Model: Perform thorough threat modeling to identify potential security risks.
- Degree: Hold a Bachelorâs or Masterâs degree, with 5+ years of hands-on experience in cybersecurity roles.
- Expertise: Possess deep knowledge of common web application vulnerabilities and effective mitigation strategies.
- Practice: Demonstrate a proven ability to validate and implement security fixes, managing vulnerability reports with expertise.
- Analyze: Be proficient in analyzing vulnerability reports such as pentest results and bug bounty reports.
- Secure: Have in-depth knowledge in secure software development practices.
- Harden: Bring hands-on experience with blue team responsibilities, including security hardening.
- Code: Proficient in Java and TypeScript for security-related tasks.
- Bonus: Experience in professional software development is a significant plus.
- Integrate: Showcase expertise in integrating security measures into CI/CD pipelines using tools like GitLab, Jenkins, etc.
- Certification: Possessing security certifications (e.g., SANS) is highly valued.
- Your Workplace: Remote work, hybrid, or in the office â work wherever you want!
- Your Working Hours: Whether you're a night owl or an early bird, work when you're most productive.
- Your Workation: Work from home or the other side of the world, up to 183 days a year.
- Your Equipment: Mac or Microsoft â you work with the IT equipment of your choice.
- Your Pension: We contribute 20% to your company pension scheme (BAV) and also cover ongoing contracts.
- Your Discounts: Enjoy attractive employee discounts via Bitkom with numerous well-known providers.
- Your Extra: Shop with the Edenred gift card, with an average of â¬20 per month.
- Your Development: Continue your education with your personal annual training budget.
- Your Health: Stay fit with our gym subsidy.
- Your Flexibility: With your flexitime account, you can make up for longer days at any time.
- Your Birthday: Celebrate yourself with a special day off on your birthday.
- Your Engagement: Use a special vacation day to engage in social or environmental causes.
- Your DRACOON: On-site, enjoy a drink flat rate from A for apple juice to Z for Coke ZERO, and of course, the obligatory fruit basket.
Start Date: December or by arrangement
Compensation: By arrangement