Senior Penetration Tester for Energy Products, Solutions & Services

关于职务

Location
葡萄牙
Porto
Porto
远程办公或公司办公
混合模式(远程办公/公司办公)
法律主体
Siemens Energy Unipessoal Lda.
组织机构
EVP Global Functions
业务部门
Cybersecurity
全职/兼职
全职
经验水平
高级专业人士

A Snapshot of Your Day

In this role, you will conduct advanced penetration testing and red team assessments across IT, OT, and factory environments to identify critical security risks. You will evaluate products and customer solutions, support compliance with international security standards, and translate technical findings into clear, actionable insights for both engineers and management—driving sustainable security improvements in an international setting.

How You’ll Make an Impact

  • Assess IT, OT & factory infrastructures as well as products, solutions, and services with tool-based and manual penetration test & red team methods (products, solutions, services, IoT & embedded devices, web technologies, rich clients, SAP, networks & network devices, security devices & technologies, protocols, source code spot checks, binary reversing, fuzzing, & DDoS attacks).
  • Find new vulnerabilities that trigger business worst case scenarios, rate their risk level according to CVSS, and prove their relevance with exploit scripts (including Scada, PLCs).
  • Additionally, check compliance of security settings with international standards and policies like CRA or IEC62443 (patch status, secure configuration).
  • Explain vulnerabilities and their impact to technical experts as well as to management and perform root-cause analysis and lessons learned with developers and architects.
  • Coach architects, developers, system integrators, administrators and service personnel early during product and solution development as well as procurement to improve security sustainably. Moreover, you coach working students.
  • Perform penetration tests on customer networks and solutions.

What You Bring

  • A minimum of bachelor’s degree in information technology, Computer Science, Engineering or related field. A specialization in cybersecurity is a plus.
  • More than three years of experience in hands-on penetration testing or red team engagements.
  • Experience within current attack methods, manual penetration testing methods, and hacking tools (Nessus, Nmap, Metasploit, Kali Linux, IDA PRO, Burp Suite Pro) as a starting point for intensive manual security tests and self-developed testing tools.
  • The ability to present and explain complex technical topics to both management personnel and technical experts.
  • Experience in analyzing rich clients (Java, .NET, binary) and their techniques, such as debugging, API hooking, and exploit generations as well as in hardware hacking (JTAG, internal bus systems) is a plus.
  • Proficiency in programming languages such as C/C++, Java, .NET, Python, and manual source code spot checks as well as domain know-how in Energy Technologies (PLC/SCADA) is a plus. 
  • As you act in an international environment, you bring fluent English language skills (including security terminology) both verbal and written; proficiency in German is a plus.
  • German language skills a plus.
  • Certifications like OSCP, CEH, CISSP, CISA, CISM preferred but not required.
  • Background knowledge in organizational information (ISO/IEC 27001 / IEC 62443).
About the Team

Our Global Functions play a key role in advancing the company's central initiatives and maintaining operational excellence across different groups, business areas, and regions. These roles support our vision to become the most valued energy technology company in the world. As part of our team, you supply to our vision by shaping the global energy transition, partnering with our internal and external collaborators, and conducting business responsibly and in compliance with legal requirements and regulations.

Who is Siemens Energy?

At Siemens Energy, we are more than just an energy technology company. We meet the growing energy demand across 90+ countries while ensuring our climate is protected. With more than ~100,000 dedicated employees, we not only generate electricity for over 16% of the global community, but we’re also using our technology to help protect people and the environment.

Our cross-border team is committed to redefining the energy sector by exploring new possibilities to achieve balanced, reliable, and affordable energy solutions. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.

Find out how you can make a difference at Siemens Energy: https://www.siemens-energy.com/employeevideo

Our Commitment to Diversity

Lucky for us, we are not all the same! Through diversity, we generate power. We run on inclusion and our combined creative energy is motivated by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.

Rewards/Benefits

  • In addition to an attractive remuneration package in line with the market, you can expect an attractive employer-financed company pension scheme
  • We also offer the opportunity to become a Siemens Energy shareholder
  • We offer our employees the opportunity to work flexibly and remotely, and our inspiring offices provide space for collaboration and creativity
  • The professional and personal development of our employees is very important to us. We provide them with the opportunities to learn and develop in a self-determined way, various attractive programmes and learning materials are available for this purpose
  • In relation to the "compatibility of family and work", we have a wide range of offers, e.g. flexible working time models, childcare places at many locations, the possibility of trial part-time work or even a sabbatical  

Jobs & Careers

#LI-GG1

#LI-Hybrid