With several hundred thousand servers in operation, Hetzner is one of the largest web hosting providers and data center operators in Europe. We provide our customers with high-tech products we develop in house, and with reliable infrastructure at fair prices. More than 450 Hetzner employees work every day to help shape the digital future and provide our customers with simple, efficient solutions to complex problems. Our company’s IT security landscape forms the foundation for stable, secure and compliant IT operations, and is crucial for protecting sensitive data and systems against modern threats. To continuously develop, monitor and adapt this security architecture to new requirements, we are looking for a dedicated IT Security Specialist (m/f/d). In this role, you will combine in-depth technical expertise in IT security with a holistic understanding of risks, threat scenarios, and regulatory requirements. You will analyze security incidents, develop prevention strategies, and work closely with internal departments and external partners to implement security measures effectively. In doing so, you will contribute to information security, the stability of our IT systems, and the sustainable safeguarding of our business processes.

Your tasks:

• Operate, continue to develop, and monitor our systems for attack detection, prevention and defence (e.g. SIEM, IDS/IPS)
• Conduct threat, risk and vulnerability analyses for internal system environments
• Design, implement, and continuously optimize cyber security strategies, concepts, and policies (e.g. Zero Trust, defence-in-depth)
• Plan, implement, and assess technical measures to minimize security risks
• Advise and support business units and IT teams in new projects (Security by Design / DevSecOps)
• Peform incident response: analysis, reaction, and follow-up for security incidents
• Assist with internal and external audits (e.g. ISO 27001, KRITIS/NIS2); track and implement any resulting new measures
• Monitor current threat landscapes and security trends and deriving appropriate measures for the organisation
• Collaborate closely with the CISO, IT Security Officer (ISO), data protection team and external service providers