Cyber Security Engineer (f/m/x)

As part of the Group Information & Cyber Security Department this function is responsible for the operations of security solutions within RBI Group such as Vulnerability Management, Security Compliance Monitoring, Threat Modeling, Secure Software Development Lifecycle and DevSecOps.
 
This role should also support the integration of the security solutions in other SaaS, PaaS, IaaS and on-premises components to foster a high-security posture for our hybrid infrastructure. The function is moreover responsible for the monitoring and the implementation of automation for the security solutions as well as the definition of measures based on these activities.

 Your mission at RBI

• Operate and refine automation procedures on our AWS CDK-based infrastructure and related tools
• Troubleshoot issues and implement corrective measures
• Support internal stakeholders in integrating security solutions according to our standards
• Coordinate with vendors to improve existing security solutions
• Perform daily administrative tasks, reporting, and inter-departmental communication
• Support in steering or operating vulnerability management tools and overall topics
• Advocate for DevSecOps principles and collaborate with development teams to ensure compliance with RBI bylaws
• Support integrating and evaluating security solutions (SAST, SCA, DAST/IAST) into the CI/CD pipeline for automated testing and benchmark existing solutions
• Gather feedback from IT teams and address operational issues with internal or external stakeholders

Your core competencies

• High level of personal integrity, ability to handle confidential matters professionally, and appropriate judgment and maturity
• Knowledge of DevOps with relevant coding experience
• Proficiency in higher scripting languages (e.g., Python, PowerShell)
• Familiarity with GitHub Actions is an asset
• Knowledge of secure software development practices
• Good understanding of the OSI model and TCP/IP protocol suite (TCP, UDP, SSL/TLS, DNS, HTTP/HTTPS)
• Understanding of web authentication protocols (OAuth 2, SAML, OpenID) and data formats (JSON, SOAP, XML)
• Hands-on experience with proxies and web servers
• Experience or willingness to learn AWS CDK
• Master’s degree in Security/Engineering, Computer Science, or equivalent practical experience
• Vendor-independent security certifications (e.g., CEH, CISSP, CISM) are strongly preferred
• Excellent written and spoken English; German is an asset
• Experience in a large international banking environment is an asset

What's in it for you

• Work Life Balance: flexible working hours (no core time), extensive hybrid working options / work from home, 30 days / year remote work from any EU-country outside Austria
• Easy Moving: work permit support
• Top-notch Equipment: modern tools & technologies
• International Spirit: multi-cultural teams, English as company language, team building events
• Learning & Agile Working: as part of our DNA & culture 
• Canteen: healthy, tasty, and heavily subsidized
• Saving: with vouchers / discounts from our staffs' council (eg. supermarket)
• Further Goodies: free public transport pass, salary account & credit card (optional), reduced gym membership, gender-neutral parental leave, bilingual company kindergarten, child care during holidays etc. 
• Salary: the offered gross yearly salary starts at EUR 48.000,- (basis full-time) excluding overtime, depending on qualification and experience.)
   

Bei Fragen bezüglich unseres Bewerbungsprozesses, wirf gerne einen Blick auf unsere Website oder unsere FAQ.   Ihr Kontakt: Nathalie Pollroß Talent Acquisition Team