Stellenangebote

Legal Counsel Location: Berlin Our client is a growing business looking for a Legal Counsel to join their in-house team. Transactional work sits at the core of this position, with day-to-day legal coverage spanning employment, data protection and commercial matters. Cross-border work is part of the mix, with coordination of external counsel across multiple jurisdictions. Key Responsibilities: Supporting business acquisitions - M&A and transactional work is a primary focus. Employment law advisory across the business. Data protection and GDPR compliance. Managing external counsel on cross-jurisdictional matters. Pragmatic commercial and operational legal support. Your Profile: German-qualified lawyer. Background in-house or at a law firm with a focus on corporate/M&A. Transactional mindset — comfortable with acquisitions and commercial contracts. Solutions-oriented and able to operate in a fast-paced, lean team environment. Fluent in German and English.

Compliance Officer Location: Germany Join a dynamic company offering innovative and complex projects in a collaborative environment. You will play a key role in enhancing the compliance management system, focusing on anti-bribery, corruption, and antitrust matters. Key Responsibilities: Develop and maintain the compliance management system, including risk assessments, sampling, and reporting. Design and deliver compliance training programs, both e-learning and in-person sessions. Implement and update internal compliance policies and guidelines. Participate in internal investigations and support compliance risk identification and mitigation. Provide advice and guidance on compliance matters across business units. Coordinate with compliance officers in subsidiaries to ensure alignment and consistency. Requirements: Degree in law, economics, or a related discipline. Several years of compliance experience, preferably within an industrial or manufacturing environment. Proficient with MS Office applications. Strong communication skills and confidence in stakeholder engagement. Excellent analytical, conceptual, and process-oriented thinking. Independent, structured, and proactive work approach. Fluent in German and English, both written and spoken. What’s on Offer: Stable employer with attractive pay aligned to collective agreements. Benefits include holiday bonuses, development opportunities, and flexible working hours. Additional perks such as employee parking, bike leasing, fitness offers, pension scheme, canteen access, and corporate discounts.

Cyber Defense Consultant – Remote Freelance Position | Cologne, Germany | €700–800 per day Job Overview We are seeking an experienced Cyber Defense Consultant for a freelance engagement supporting cybersecurity operations for a client based in Cologne, Germany. This is a highly technical, hands-on security engineering and consulting role requiring deep expertise in incident response, threat detection, vulnerability management, and defensive security operations. You will be directly involved in investigating security incidents, performing forensic analysis, conducting vulnerability assessments, and working hands-on with security tools and systems. This role requires someone who can hit the ground running, provide immediate technical value, and deliver professional consulting services while defending against complex security threats. Key Responsibilities Hands-On Incident Response & Investigation Investigate and respond to security incidents from detection through containment and remediation Perform forensic analysis on compromised systems, including memory dumps, disk images, and log analysis Conduct malware analysis and reverse engineering to understand attack vectors and tactics Execute incident response procedures and technical playbooks during active security events Analyse security alerts from SIEM, EDR, and other security tools to identify genuine threats Perform root cause analysis and document technical findings for post-incident reports Engage directly with affected systems to contain threats and support recovery Security Tools & Platform Engineering Hands-on configuration and optimisation of the Microsoft Defender suite (Endpoint, Office 365, Identity, Cloud Apps) Build and tune detection rules, hunting queries, and automated response workflows Configure and maintain SIEM platforms, correlation rules, and security use cases Integrate security tools and orchestrate automated response capabilities Troubleshoot technical issues across security infrastructure and monitoring tools Test and validate security controls and detection capabilities Vulnerability Assessment & Testing Perform hands-on vulnerability scanning across infrastructure and applications Conduct penetration testing exercises to identify security weaknesses Exploit and validate vulnerabilities to assess real-world risk Analyse scan results and manually verify findings Work with technical teams to validate and test remediation efforts Maintain and configure vulnerability scanning tools and assessment platforms Threat Hunting & Proactive Defense Conduct proactive threat hunting activities across the environment Analyse network traffic, system logs, and endpoint telemetry to identify anomalies Investigate suspicious activity and potential indicators of compromise Develop and execute custom detection logic and hunting hypotheses Perform deep-dive analysis of advanced persistent threats Build custom scripts and tools to support security operations SOC Provider & Technical Coordination Work directly with external SOC analysts during incident investigations Provide technical guidance and escalation support for complex security events Review and validate alerts and findings from SOC providers Collaborate on tuning detection rules and reducing false positives Participate in technical reviews of SOC performance and capabilities Share threat intelligence and technical indicators with SOC partners Essential Requirements Technical Experience Minimum 10 years of hands-on cybersecurity experience, with at least 5 years in incident response Proven experience investigating and responding to complex security incidents Hands-on experience with vulnerability assessments and penetration testing Direct experience configuring and managing security tools (SIEM, EDR, IDS/IPS, etc.) Experience working technically with external SOC providers Strong hands-on experience with Microsoft Defender (Endpoint, Office 365, Identity, Cloud Apps) Experience performing forensic analysis and malware investigations Ability to work independently and integrate quickly into new environments Previous freelance or consulting experience in similar roles Core Technical Skills Expert understanding of incident response methodologies (NIST, SANS) Hands-on SIEM experience (Splunk, Sentinel, QRadar) Strong scripting skills (PowerShell, Python, Bash) Deep technical knowledge of Windows, Linux, and networking Experience with forensic tools (EnCase, FTK, Volatility) Packet analysis skills (Wireshark, tcpdump) Malware analysis techniques and tooling Penetration testing tools (Metasploit, Burp Suite, Nmap) Strong knowledge of MITRE ATT&CK and kill chain models Practical cloud security experience (Azure, AWS, or GCP) Language Requirements Fluent English (written and spoken) German language skills are essential Security Frameworks & Standards Practical knowledge of ISO 27001, NIST CSF, and CIS Controls Understanding of GDPR, PCI-DSS, SOX, and related regulations Experience validating and testing security controls Consulting Skills & Attributes Hands-on technical problem solver Able to make decisions under pressure during live incidents Self-starter who adapts quickly to new environments and tools Strong client-facing communication skills Professional consulting demeanour and presentation style Highly analytical with strong attention to detail Comfortable working in command-line environments Passion for emerging threats and attack techniques Excellent documentation and report-writing skills Ability to provide strategic security recommendations alongside implementation Desirable Banking or financial services sector experience Experience with SOAR platforms and security automation Background in offensive security or red teaming CTF participation or security research contributions Experience with threat intelligence platforms Cloud-native and container security experience Freelance Engagement Details Engagement Type: Freelance contract (Freiberufler) Location: Cologne, Germany (Köln) Duration: 12 months Work Model: Remote (German-speaking environment) Start Date: March 2026 Rate: Competitive daily rate based on experience Requirements: Valid German work permit or EU right to work Business Registration: Freiberufler or own company (GmbH / UG)

Interim Cybersecurity Lead / Operating Advisor (Technical CISO) - 9 months Flexible Hybrid - Munich - Oslo - London - Stockholm Sector: Growth Equity / Private Equity About the Client Our client is a leading European growth equity investor partnering with technology-enabled and sustainable businesses. The portfolio consists primarily of high-growth companies across sectors such as SaaS, fintech, deeptech, healthtech and digital platforms. The firm takes a hands-on approach to value creation, working closely with management teams to scale operations, strengthen capabilities and prepare businesses for exit. Cybersecurity is a key part of this — both as a risk management discipline and a value creation lever. The Role We are seeking an Interim Cybersecurity Lead / Technical CISO to cover a period of paternity leave. This is a portfolio-facing, high-impact role operating at the intersection of: Investment (sourcing and due diligence) Portfolio value creation (hands-on advisory) Community and capability building across companies This is not a traditional internal CISO role. The primary focus is external: supporting multiple high-growth companies, contributing to investment decisions, and translating cybersecurity into practical, commercially relevant outcomes. You will act as a trusted advisor to investment professionals, founders and executive teams, helping identify risk, unlock value and scale cybersecurity capabilities across a diverse portfolio. We are looking for someone pragmatic, commercially minded and comfortable operating in fast-moving environments — someone who understands what “good” looks like for a growth-stage company and can prioritise accordingly. Key Responsibilities Investment & Sourcing Support cybersecurity across the full investment lifecycle, from early-stage screening to due diligence Engage with investment teams to assess targets, products and architectures from a cybersecurity perspective Provide clear, investment-relevant assessments: risks, red flags and value creation opportunities / risk mitigation actions Evaluate whether a company’s security posture supports or undermines the investment thesis Translate technical findings into concise, decision-useful insights for investment teams Portfolio Value Creation Act as a trusted advisor to portfolio companies on cybersecurity Support prioritisation and execution of pragmatic improvements Advise on regulatory developments, customer requirements and scaling security capabilities Focus on practical impact over theoretical maturity Community & Capability Building Develop and maintain the cybersecurity community across portfolio companies Facilitate knowledge sharing and peer learning Lead targeted sessions (e.g. workshops, webinars) on relevant, real-world challenges AI & Emerging Technology Stay ahead of developments in AI and their cybersecurity implications Identify and promote practical applications of AI to improve security and efficiency Support portfolio companies in adopting AI-driven workflows securely and effectively Contribute to the firm’s broader perspective on AI and technology Internal & Governance (Limited Scope) Provide pragmatic input on internal cybersecurity where required (this role is not responsible for cybersecurity internally) Support investor-related requirements and expectations Your Profile Experience as a CISO, Head of Cybersecurity, or equivalent senior role Strong mix of technical depth and business understanding (cloud, SaaS, modern architectures) Experience from high-growth environments, scale-ups, or advisory roles Ability to assess cybersecurity in an investment context (risk, value, trade-offs) Comfortable operating across multiple companies simultaneously Strong communicator — able to engage credibly with executives, founders and investors Pragmatic and outcome-oriented — understands when “good enough” is the right answer Hands-on and adaptable — able to move between strategy and execution Familiarity with AI tools and their application to cybersecurity Consultancy experience is advantageous but not required What Success Looks Like Investment teams receive clear, decision-useful cybersecurity input Portfolio companies make tangible, prioritised improvements Cybersecurity is positioned as a business enabler, not just a control function A strong community and knowledge-sharing culture is established across the portfolio What This Role Is Not A traditional, internally focused CISO role A pure governance or compliance position A large-scale enterprise transformation programme A theoretical advisory role disconnected from execution

OT/Automotive Cybersecurity Expert (Freelance) Start: June 2026 | Duration: 6 months | FTE: 0.5 – 1.0 | Location: Remote | Language: German mandatory ?? Hard Requirement: Candidates must have demonstrable hands-on project experience with UNECE R155 and ISO/SAE 21434. CVs without this will not be considered. We are looking for a freelance OT/Automotive Cybersecurity Expert for a remote engagement in the automotive sector starting June 2026. Responsibilities: Embedded cybersecurity engineering activities according to UNECE R155 and ISO/SAE 21434, including Risk Management (TARA), Cybersecurity Concept and Security Case at system and software level Acting as Project Cybersecurity Manager within customer project teams, serving as the interface between software, hardware, systems teams and the OEM Cybersecurity concept development for embedded systems and interfaces across IT, production, software, system and hardware platforms Cybersecurity audit and assessment support (UNECE R155, ISO/SAE 21434, ASPICE) Your profile: Proven hands-on project experience with UNECE R155 and ISO/SAE 21434 — mandatory Experience as a Project Cybersecurity Manager in OEM or Tier 1 environments Knowledge of TARA methodologies and embedded systems cybersecurity Familiarity with ASPICE processes Fluent German — mandatory

Senior Controller  Location: Munich Our client is seeking a Senior Controller to oversee financial planning, reporting, and performance analysis within a dynamic, fast-growing organisation. This role involves managing financial statements, business unit performance, and corporate planning while driving process optimisation and special finance projects. Key Responsibilities: Oversee the end-to-end financial management of business units, including P&L, balance sheet, and cash flow analysis. Prepare monthly and annual financial statements, analyse business performance, and provide insights to senior management. Coordinate annual corporate planning, interim forecasts, and medium-term financial planning. Enhance existing controlling tools and financial processes for greater efficiency. Lead finance-related strategic initiatives in collaboration with leadership. Your Profile: Master’s degree in Business Administration, Finance, or a related field, with a focus on controlling and finance. Several years of experience in controlling or finance, preferably in a fast-paced, dynamic environment. Advanced Excel skills and the ability to adapt quickly to new financial systems (e.g., SAP Business One, Lucanet). Strong analytical and data interpretation skills, with the ability to present findings clearly. Structured, hands-on approach with a proactive mindset and strong team collaboration skills. Fluent in German and English (C1 level or higher). What's On Offer: A challenging and diverse role with significant responsibility from day one. A fast-paced, innovative environment with opportunities for professional growth. Short decision-making processes and the freedom to develop and implement new ideas. A chance to contribute to meaningful work that positively impacts people’s lives.