Who are we?
It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.
All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!
TasksAs a Junior Cyber Strategy & Architecture Consultant (m/w/d) with a focus on GRC located in Germany, you will work together with Senior or Principal Consultants to support our larger to smaller customers with the overall reinforcement of their security posture. Typical engagements include (but are not limited to):
Assisting client’s IT or security teams with the implementation of strategic security programs and projects. You solve together with other NVISO experts customers challenges or work in full integration with the client organization. Supporting the refinement of security governance, policies, processes and guidelines in all areas of the cyber security field. Assisting the implementation our client’s ISMS (Information Security Management Systems) by also implementing NVISO solutions based on controls frameworks. Supporting the refinement our client’s Security Strategy by developing Enterprise and IT governance structures through policies, standards, processes and operational structures. Assisting in the definition of action plans in alignment with internal and external stakeholders. Assisting in reaching or maintaining compliance to information security legal, contractual, or internal requirements; this includes implementing semi-automated solutions (GRCasaCode and Continuous Compliance supported by scripted and automated solutions). Assist the preparation of reporting to the senior management of the client. Requirements Bachelor or a Master’s degree, your education is not required to be in IT or technology, however you should have strong affinity with technology. Basic knowledge in the area of Cyber Security. Basic knowledge on automation and coding is beneficial but not needed. First experiences in mapping NIST, ISO27001, NIS2 and/or DORA requirements to practical implementations are beneficial. Used to operating with a great deal of autonomy, but also appreciate the value of team work. Basic project management skills. Excellent written and verbal German and English communication skills, with the ability to effectively communicate complex concepts. You hold citizenship in one of the 32 NATO member states. BenefitsAt NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:
A training budget of 10.000 EUR and 10 days training man days every 2 years; Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc.) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc.); An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!; Regular team-building and fun events throughout the year; Our commitment to coach, counsel, and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!; Flexible working hours, homeworking and the possibility to work from abroad; Business Bike Leasing; BahnCard 50 1st class + public transfer ticket; 30 holidays; Cool offices in the center of Frankfurt, and Munich with BBQ, kicker table, table tennis, Playstation, etc..Disclaimer on the Use of AI Tools in the Application Process
Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.
Our expectations:
Application documents must authentically reflect your own qualifications, personality, and motivation.
The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.
Fully generated application documents created by AI without personal adaptation or review are not permitted.
Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.
We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.
The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.
We are a young team of cyber security professionals who decided to do things differently. With innovation rooted in our foundations, we offer services that are up against the modern adversary and that help you Prevent, Detect & Respond to cyber attacks.
Curious for more? Say hello and meet the team!
weniger ansehenWho are we?
It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.
All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!
TasksAs a Principal Threat Intelligence Consultant (m/w/d), you will be responsible for executing complex threat intelligence engagements and projects with a high degree of autonomy. You will independently deliver work upon under the direction of clients or the NVISO Threat Intelligence Manager, while acting as a trusted senior advisor to clients.
You will play a key role in managing stakeholder relationships, leading discussions with technical and executive audiences, and ensuring the successful delivery of high-quality threat intelligence services. In parallel, you will support more junior team members, contributing to the professional growth and maturity of the Threat Intelligence team.
The role spans the full breadth of Threat Intelligence services, including strategic, operational, and tactical intelligence, capability building, threat landscapes, and intelligence-driven incident response support. TIBER-EU and TLPT-style assessments form an important part of the role.
Your responsibilities
Execute threat intelligence engagements and project-related tasks independently, based on guidance from the Threat Intelligence Manager in charge.Act as engagement lead or primary analyst on advanced TI engagements, including TIBER-EU, TLPT, and other intelligence-led security assessments.Manage stakeholder relationships throughout engagements, serving as the primary threat intelligence point of contact for clients, regulators, and internal teams.Coach and mentor junior threat intelligence analysts, providing technical guidance, reviewing deliverables, and supporting their professional development.Produce and deliver threat landscape reports (generic and targeted), capability maturity assessments, strategic intelligence briefings, and threat actor analysis tailored to client sectors and risk profiles.Conduct dark web monitoring assessments, identifying exposed credentials, leaked data, and digital risks beyond conventional security perimeters.Provide threat intelligence support during incident response engagements, including threat actor attribution, TTP analysis, and intelligence-driven containment and remediation recommendations.Deliver threat-based briefings and security awareness sessions for managerial and technical audiences, leveraging NVISO's incident response and threat intelligence experience.Drive continuous improvement of NVISO's threat intelligence processes, methodologies, and service offerings, ensuring alignment with regulatory requirements and industry best practices.Support the Threat Intelligence Manager with service strategy definition, business development activities, and contribution to proposals and client engagement planning.Maintain current knowledge of threat landscapes across key sectors, including TTPs of advanced persistent threat actors, emerging attack techniques, and evolving regulatory requirements.Support cross-functional collaboration with NVISO's incident response, red team, and SOC teams to provide integrated threat intelligence services.Maintain current knowledge of threat landscapes across key sectors, including TTPs of advanced persistent threat actors, emerging attack techniques, and evolving regulatory requirements.Support cross-functional collaboration with NVISO's incident response, red team, and SOC teams to provide integrated threat intelligence services.Requirements5+ years of experience Cyber Security and at least 3+ years in cyber threat intelligence, including production of intelligence assessments, threat reporting, and client-facing delivery.Demonstrated experience delivering threat intelligence for TIBER-EU and/or TLPT assessments within the financial services sector.Strong understanding of threat landscapes across financial services, technology, and critical infrastructure sectors, including relevant threat actors, attack patterns, and regulatory requirements.Proven experience establishing or improving threat intelligence capabilities, processes, and programs within organizations.Strong analytical and research skills, with proficiency in intelligence collection from open-source, dark web, and commercial threat intelligence platforms.Expertise in threat actor profiling, TTP analysis, and mapping to frameworks such as MITRE ATT&CK, Killchain & Diamond model.Experience supporting incident response activities with threat intelligence, including threat actor attribution and intelligence-driven recommendations.Proven ability to produce high-quality written intelligence products for technical and executive audiences.Strong stakeholder management and coaching skills, with experience presenting to senior executives, regulators, and technical teams, and mentoring junior analysts.Self-starter who takes ownership of deliverables and can work independently to execute complex projects under customer or manager direction.Language: German and English at C1+ proficiency for client-facing work across DACH.You are eligible for a NATO clearance.Your availability
Standard business hours with occasional flexibility required during active client engagements and incident response support.Travel
Some limited travel within DE/AT/CH (~10%) for onsite engagements, workshops, and stakeholder meetingsBenefitsAt NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:
Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc);An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we’ve visited Lisbon, Dubai and Malta over the past few years;Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!A training budget of 10,000 EUR plus 10 days paid time off rolling over two years;Flexible working hours and home office possibilities (incl. working abroad options within the EU);Reimbursement of Deutschlandticket + BahnCard 50 1st Class;Business Bike Leasing;Company Pension Scheme;30 holidays.Disclaimer on the Use of AI Tools in the Application Process
Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.
Our expectations:
Application documents must authentically reflect your own qualifications, personality, and motivation.
The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.
Fully generated application documents created by AI without personal adaptation or review are not permitted.
Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.
We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.
The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.
\n#J-18808-Ljbffr weniger ansehenWho are we?
It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.
All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!
TasksAs a Principal Threat Intelligence Consultant (m/w/d), you will be responsible for executing complex threat intelligence engagements and projects with a high degree of autonomy. You will independently deliver work upon under the direction of clients or the NVISO Threat Intelligence Manager, while acting as a trusted senior advisor to clients.
You will play a key role in managing stakeholder relationships, leading discussions with technical and executive audiences, and ensuring the successful delivery of high-quality threat intelligence services. In parallel, you will support more junior team members, contributing to the professional growth and maturity of the Threat Intelligence team.
The role spans the full breadth of Threat Intelligence services, including strategic, operational, and tactical intelligence, capability building, threat landscapes, and intelligence-driven incident response support. TIBER-EU and TLPT-style assessments form an important part of the role.
Your responsibilities
Execute threat intelligence engagements and project-related tasks independently, based on guidance from the Threat Intelligence Manager in charge.Act as engagement lead or primary analyst on advanced TI engagements, including TIBER-EU, TLPT, and other intelligence-led security assessments.Manage stakeholder relationships throughout engagements, serving as the primary threat intelligence point of contact for clients, regulators, and internal teams.Coach and mentor junior threat intelligence analysts, providing technical guidance, reviewing deliverables, and supporting their professional development.Produce and deliver threat landscape reports (generic and targeted), capability maturity assessments, strategic intelligence briefings, and threat actor analysis tailored to client sectors and risk profiles.Conduct dark web monitoring assessments, identifying exposed credentials, leaked data, and digital risks beyond conventional security perimeters.Provide threat intelligence support during incident response engagements, including threat actor attribution, TTP analysis, and intelligence-driven containment and remediation recommendations.Deliver threat-based briefings and security awareness sessions for managerial and technical audiences, leveraging NVISO's incident response and threat intelligence experience.Drive continuous improvement of NVISO's threat intelligence processes, methodologies, and service offerings, ensuring alignment with regulatory requirements and industry best practices.Support the Threat Intelligence Manager with service strategy definition, business development activities, and contribution to proposals and client engagement planning.Maintain current knowledge of threat landscapes across key sectors, including TTPs of advanced persistent threat actors, emerging attack techniques, and evolving regulatory requirements.Support cross-functional collaboration with NVISO's incident response, red team, and SOC teams to provide integrated threat intelligence services.Maintain current knowledge of threat landscapes across key sectors, including TTPs of advanced persistent threat actors, emerging attack techniques, and evolving regulatory requirements.Support cross-functional collaboration with NVISO's incident response, red team, and SOC teams to provide integrated threat intelligence services.Requirements5+ years of experience Cyber Security and at least 3+ years in cyber threat intelligence, including production of intelligence assessments, threat reporting, and client-facing delivery.Demonstrated experience delivering threat intelligence for TIBER-EU and/or TLPT assessments within the financial services sector.Strong understanding of threat landscapes across financial services, technology, and critical infrastructure sectors, including relevant threat actors, attack patterns, and regulatory requirements.Proven experience establishing or improving threat intelligence capabilities, processes, and programs within organizations.Strong analytical and research skills, with proficiency in intelligence collection from open-source, dark web, and commercial threat intelligence platforms.Expertise in threat actor profiling, TTP analysis, and mapping to frameworks such as MITRE ATT&CK, Killchain & Diamond model.Experience supporting incident response activities with threat intelligence, including threat actor attribution and intelligence-driven recommendations.Proven ability to produce high-quality written intelligence products for technical and executive audiences.Strong stakeholder management and coaching skills, with experience presenting to senior executives, regulators, and technical teams, and mentoring junior analysts.Self-starter who takes ownership of deliverables and can work independently to execute complex projects under customer or manager direction.Language: German and English at C1+ proficiency for client-facing work across DACH.You are eligible for a NATO clearance.Your availability
Standard business hours with occasional flexibility required during active client engagements and incident response support.Travel
Some limited travel within DE/AT/CH (~10%) for onsite engagements, workshops, and stakeholder meetingsBenefitsAt NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:
Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc);An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we’ve visited Lisbon, Dubai and Malta over the past few years;Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!A training budget of 10,000 EUR plus 10 days paid time off rolling over two years;Flexible working hours and home office possibilities (incl. working abroad options within the EU);Reimbursement of Deutschlandticket + BahnCard 50 1st Class;Business Bike Leasing;Company Pension Scheme;30 holidays.Disclaimer on the Use of AI Tools in the Application Process
Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.
Our expectations:
Application documents must authentically reflect your own qualifications, personality, and motivation.
The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.
Fully generated application documents created by AI without personal adaptation or review are not permitted.
Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.
We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.
The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.
\n#J-18808-Ljbffr weniger ansehen