Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
Für Unternehmen Auf einen Blick
- Aufgaben: Lead security initiatives in IT & Development, assess risks, and drive security requirements.
- Arbeitgeber: Join Hapag-Lloyd, a top global shipping company, and make an impact in cybersecurity.
- Mitarbeitervorteile: Enjoy flexible work hours, 28 vacation days, health programs, and a modern office in Hamburg.
- Warum dieser Job: Be at the forefront of security innovation while collaborating with diverse teams in a dynamic environment.
- Gewünschte Qualifikationen: Master's/Bachelor's in IT or Cybersecurity, 4+ years experience, and strong communication skills required.
- Andere Informationen: German language basics are encouraged for social integration.
Das voraussichtliche Gehalt liegt zwischen 60000 - 84000 € pro Jahr.
We are seeking a highly skilled and experienced Platform Security Lead (PSL) to join our team and strengthen the security posture of our platforms. As the Platform Security Lead within the CISO Department, you will be responsible for driving security by design in the IT & Development teams, assessing potential security threats or breaches, setting awareness on security aspects to consider bringing up, and driving security requirements in cooperation with our CISO Teams.
To be a successful PSL, you should have excellent attention to details, as well as strong strategic planning skills. Outstanding PSLs display excellent communication, interpersonal, and top-notch technical skills.
Responsibilities and Tasks
- Driving security by design in the IT & development teams
- Performing risk assessments to eliminate as many potential risks as possible, including: performing designs reviews, producing security requirements, performing gap analysis, validating security controls implementation, supporting pen-tests activities, supporting IT teams with advice on vulnerabilities' remediation activities, articulating existing risks to support risk acceptance processes, and issuing formal Risk Opinion reports
- Driving the conception of DevSecOps within our DevOps teams
- Being the First Point of Contact for almost all security-related topics
- Formally assessing information security risks related to solution/business projects, determining the potential impact of those risks, and conducting follow-up throughout the project lifecycle on any necessary remediation efforts
- Working hand-in-hand with IT teams (developers, architects, product owners, business) to serve the platform's requirements and CISO requirements
- Developing specialized knowledge of and key relationships with the platform, ensuring that security is embedded in the platform and that its security needs are being met
- Collaborating with other team members to identify opportunities for implementing common security solutions
- Supporting our CISO Risk & Compliance team and participating in the creation, review, and update of information security policies
- Remaining up to date with the latest security systems, tools, trends, and technology
Requirements and Qualifications
You are bursting with the ambition to keep up with us. Specifically for this vacancy as a Platform Security Lead for the CISO department, you are skilled at communication, presentation, and stakeholder management. You supplement these skills with:
- Master's or Bachelor's degree or equivalent technical training in Information Technology, Information Systems Security, Cybersecurity, or related field
- Minimum 4 years of relevant IT and Information Security experience and the ability to act independently with minimal supervision
- Experience with security architectures such as cloud, mobile, enterprise, web, and app security architecture
- Proven experience with threat modelling frameworks: MITRE ATT&CK, STRIDE, PASTA
- Understanding core concepts of: ISO 27001, ISO 27017, NIST, NTSC, OWASP, CIS, CVSS
- Experience with security tests to combat code execution, SQL injection, and cross-site scripting
- Experience with security in cloud computing and microservices architecture
- Familiarity with security-related legal and regulatory requirements
- Demonstrated specialized knowledge in web application security and mobile application security, including data protection methods
- Excellent communication skills and the ability to translate technical jargon for non-technical stakeholders
German language expectations: We expect all international candidates to be willing to learn at least the basics of the German language in case they are accepted for the position.
What we offer
- Dynamic and modern working atmosphere in a newly renovated, modern office in the heart of Hamburg's city center
- At least 28 days of vacation, flextime, capital-forming benefits, hybrid work model
- Subsidy for public transportation
- Bike leasing for all positions
- Restaurant and coffee bar
- Health and company sports programs (e.g., yoga, sailing, fitness courses, and much more)
- Corporate volunteering cooperation with purpozed.org
Save time with your application and send us only your CV for now. You can easily apply online by using our application tool.
Platform Security Lead (m/f/d) Arbeitgeber: Hapag-Lloyd AG
Kontaktperson:
Hapag-Lloyd AG HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Platform Security Lead (m/f/d)
✨Tip Number 1
Familiarize yourself with the specific security frameworks mentioned in the job description, such as MITRE ATT&CK and OWASP. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and alignment with the role.
✨Tip Number 2
Showcase your experience with cloud security and microservices architecture. Prepare examples of past projects where you successfully implemented security measures in these areas, as this is crucial for the Platform Security Lead position.
✨Tip Number 3
Highlight your communication skills by preparing to explain complex security concepts in simple terms. This will be important when interacting with non-technical stakeholders, which is a key part of the role.
✨Tip Number 4
Stay updated on the latest trends and technologies in information security. Being knowledgeable about current threats and solutions will not only help you in interviews but also show your commitment to continuous learning in the field.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Platform Security Lead (m/f/d)
Tipps für deine Bewerbung 🫡
Understand the Role: Make sure to thoroughly read the job description for the Platform Security Lead position. Understand the key responsibilities and required qualifications, so you can tailor your application accordingly.
Highlight Relevant Experience: In your CV, emphasize your experience in IT and Information Security, particularly any roles that involved security architecture, risk assessments, or working with DevSecOps. Use specific examples to demonstrate your expertise.
Showcase Communication Skills: Since the role requires excellent communication skills, include examples in your application that illustrate your ability to convey technical information to non-technical stakeholders. This could be through previous projects or presentations.
Express Willingness to Learn German: Mention your willingness to learn German in your cover letter. This shows your commitment to integrating into the company culture and participating in social life in Germany.
Wie du dich auf ein Vorstellungsgespräch bei Hapag-Lloyd AG vorbereitest
✨Understand Security by Design
Make sure to familiarize yourself with the concept of security by design. Be prepared to discuss how you would implement this in IT and development teams, and provide examples from your past experiences.
✨Showcase Your Risk Assessment Skills
Be ready to explain your approach to performing risk assessments. Highlight any specific frameworks or methodologies you have used, such as MITRE ATT&CK or STRIDE, and how they helped mitigate risks in previous projects.
✨Communicate Effectively
Since excellent communication skills are crucial for this role, practice translating complex technical concepts into simple terms. Prepare to demonstrate how you would communicate security requirements to non-technical stakeholders.
✨Stay Updated on Security Trends
Research the latest trends and technologies in cybersecurity. Be prepared to discuss recent developments in security systems and tools, and how they could be applied to enhance the security posture at Hapag-Lloyd.
