Logo for DKB Code Factory GmbH

IT Security AI-Redteamer

Role overview

Qualifications

  • Proven hands on experience in red team or offensive security testing across web apps, APIs, and cloud environments.
  • Solid understanding of OWASP Top 10, API Security Top 10, CVSS, secure SDLC, threat modeling.
  • Experience with AI assisted offensive tooling or demonstrable integration of ML/NLP techniques into offensive workflows (e.g., Mythos, GPT Cyber).
  • Strong practical experience with Burp Suite, OWASP ZAP, Nmap, Metasploit, Nessus/OpenVAS, and Kali Linux.

Responsibilities

  • Plan and execute AI-assisted red team engagements across web applications, APIs, cloud workloads and infrastructure, and deliver prioritized technical reports and executive summaries.
  • Provide clear remediation guidance and validate fixes, prioritizing critical and high findings.
  • Configure, tune and maintain offensive tooling and develop automation playbooks that reduce manual triage and false positives.
  • Integrate recurring security checks into CI/CD pipelines and platform processes to enable continuous testing and attack-surface reduction.

About the company

DKB Code Factory GmbH logo

DKB Code Factory GmbH

At Code Factory we believe that every big journey starts with a first step. Our destination: creating tomorrow's banking. Four million customers have already placed their faith in us. Their wind farms and schools depend on our code. We are forging the future of finance - today. As a subsidiary of DKB, we benefit from the financial backing and entrepreneurial expertise of an established company but enjoy the flexibility and agility of a startup. By encouraging unconventional ideas and working hand-in-hand with other fintech companies in the heart of Berlin, we are reshaping modern finance. Join us!

Company details

Company typeScaleup
Company size51 - 200

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Welcome to DKB Code Factory…. 

{ { … a_place_to_stay_yourself:

} } ; 

{ { … a_place_to_stay_curious:

Use AI driven offensive security techniques to proactively identify, validate, and communicate exploitable vulnerabilities across DKB’s digital banking products, cloud platforms, APIs, and internal systems. In this high impact role you will run redteam engagements, shape remediation priorities, and help establish a scalable offensive security capability that protects millions of customers.

} } ; 

{ your_responsibilities: [

 

  • Plan and execute AI-assisted red team engagements across web applications, APIs, cloud workloads and infrastructure, and deliver prioritized technical reports and executive summaries.
  • Provide clear remediation guidance and validate fixes, prioritizing critical and high findings.
  • Configure, tune and maintain offensive tooling and develop automation playbooks that reduce manual triage and false positives.
  • Integrate recurring security checks into CI/CD pipelines and platform processes to enable continuous testing and attack-surface reduction.
  • Run remediation workshops and knowledge transfers, and produce reusable runbooks for product and platform teams.
  • Coordinate triage and handoff with SOC, IT Ops, product teams and central IT Security, and support governance and compliance mapping (OWASP, API Security Top 10, CVSS).

 

] } ;

{ following_qualifications_would_be_in_line_with_our_desired_profile_for_this_position: [

  • Proven hands on experience in red team or offensive security testing across web apps, APIs, and cloud environments.
  • Solid understanding of OWASP Top 10, API Security Top 10, CVSS, secure SDLC, threat modeling.
  • Experience with AI assisted offensive tooling or demonstrable integration of ML/NLP techniques into offensive workflows (e.g., Mythos, GPT Cyber).
  • Strong practical experience with Burp Suite, OWASP ZAP, Nmap, Metasploit, Nessus/OpenVAS, and Kali Linux.
  • Solid cloud security knowledge, particularly AWS, and experience with Kubernetes and container security. 
  • Scripting and automation skills (Python, Bash) and experience integrating security checks in Git/GitLab CI or equivalent CI systems.
  • Excellent written and verbal communication skills in English
  • Experience with SIEM/logging platforms, OpenSearch, Grafana, or production monitoring stacks and prior experience in financial services or regulated environments are a plus

] } ;

Got the feeling not to match every single requirement? Don’t worry! We encourage you to apply anyways, even if your qualifications do not align perfectly. You might still be just the right candidate for us!

{ { … a_place_to_stay_together:

From Morning Daily to Afterwork Drink, team spirit is essential to us. The heart of our togetherness is that we truly are connected with each other: We not only share fun & laughter, but also honest opinions - because that's how we grow: We exchange ideas, give support in our personal development, and celebrate success together! Besides our great community, we also offer numerous other benefits... 

} } ;

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

IT Security Manager Related jobs

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.