Siemens Mobility is a separately managed company of Siemens. As a leader in transport solutions for more than 160 years, Siemens Mobility is constantly innovating its portfolio in its core areas of rolling stock, rail automation and electrification, turnkey systems, intelligent traffic systems as well as related services. With digitalization, Siemens Mobility is enabling mobility operators worldwide to make infrastructure intelligent, increase value sustainably over the entire lifecycle, enhance passenger experience and guarantee availability.In the digital age, Cybersecurity is a basic prerequisite if companies are going to be able to protect their critical infrastructures and sensitive data and ensure uninterrupted business operations. Thus, Cybersecurity is a top priority at Siemens Mobility. Our products, systems, and services adequately protect our customers' data and equipment according to the current state-of-the-art.We are looking for a motivated and dedicated Penetration Tester / Ethical Hacker to join our team of cyber security experts in the Mobility sector. This is a unique opportunity for a technical, hands-on person to grow with the business and play a pivotal role in the growth and leadership of the team.Professional Skills:3+ years of experience in an offensive security specialty.Ability to clearly communicate, present and report technical topics.Good analytical and problem-solving skills.Windows, Linux and MacOS knowledge.English - B2 at least.Passion for learning.Team player with ability to work independently.Advanced interpersonal, verbal and written communications skills.Ability to multitask, manage time effectively and prioritize tasks.Self-motivated and creative.Expert Level Knowledge Required In:Port scanners, vulnerability scanners, exploitation frameworks (Nmap, Nessus...).Manual exploitation of public vulnerabilities.Networking and network protocols.Enumeration techniques.Web application manual and automatic testing (Burp Suite...).Active Directory.Windows and Linux access controls and administration.Good Understanding Of:Threat modelling and risk assessment.Penetration testing processes, procedures, and reporting requirements.Post exploitation techniques.Nice To Have:Certifications such as OSCP, OSCE, CRTP, CRTE, CRTO, etc.Programming skills (Python, C#, C/C++, Go, etc.).Cloud (Azure and AWS).If we all thought the same, we would never think of anything new! That's why we recruit great minds from all walks of life. We recognise that building a diverse workforce is essential to the success of our business, therefore we encourage applications from a diverse talent pool.We welcome the opportunity to discuss flexibility requirements with our applicants to encourage agile working and innovation. Flexibility is our main benefit. We combine remote and presence work because work-life balance and wellbeing are essential for our teams.#J-18808-Ljbffr