View Jobs

Director ICT / Information Security Location: Frankfurt A role that inspires you Take on a senior leadership role within a large, regulated financial services group as Director ICT / Information Security. You will shape the organisation’s ICT risk strategy, strengthen cyber resilience, and ensure robust governance and regulatory compliance across a complex, international environment. Key Responsibilities: Lead and develop specialist teams and team leads in a national and international setting. Define and implement ICT risk strategy, governance structures, and continuous monitoring frameworks. Oversee cyber and information security risk management, including incident response. Enhance processes, controls, and methodologies to strengthen ICT risk mitigation. Ensure compliance with regulatory requirements and support supervisory audits. Report material ICT risks to senior management and oversee mitigation measures. Monitor risk performance through KPIs and structured escalation processes. Coordinate cross-functional stakeholders and manage key internal and external interfaces. Provide conceptual guidance to the First Line of Defence on security controls and requirements. Manage personnel and budget resources effectively. Your Profile: Master’s degree in (Business) Informatics, Mathematics, Natural Sciences, or a related IT discipline; alternatively, a relevant vocational qualification with substantial professional and leadership experience. Extensive experience in ICT risk management within a regulated environment. Proven leadership capability in managing specialist teams and complex initiatives. Strong understanding of governance frameworks, regulatory requirements, and audit processes. Ability to combine strategic vision with operational delivery. Excellent stakeholder management and communication skills. What’s on Offer? A high-impact leadership role within a regulated financial services environment. Strategic influence on group-wide ICT risk and cyber security governance. Close collaboration with senior management and supervisory stakeholders. Long-term career perspective within a stable, international organisation.

The Nemetschek Group is a pioneer for the digital transformation in the AEC/O industry and focuses on the use of open standards (OPEN BIM). As one of the world's leading groups in this industry, the Nemetschek Group increases the quality in the construction process with its intelligent software solutions and improves the digital workflow of all those involved in the process. As a result, buildings can be planned, built, and operated more efficiently, sustainably and with less impact on resources. Overview As we move towards an integrated AI Target Operating Model (TOM), this framework will organize and scale AI capabilities across the entire Nemetschek group, balancing cross-brand synergies with brand autonomy, combining the strengths of all brands into “one team”.  The AI TOM brings together a strong Centre of Excellence in the AI Hub, deep domain expertise within each brand and shared goals and clear alignment across the group. This setup will unlock more strategic AI bets, accelerate innovation, and help us truly reinvent our dream. As part of the AI TOM rollout, we are looking for an AI Transformation Lead   Responsibilities and Tasks  • Drive comprehensive organizational transformation toward AI-first operations, developing and executing multi-year transformation strategies aligned with brand vision and AI Hub frameworks  • Lead enterprise-wide initiatives to reimagine business processes, workflows, and operational models to leverage AI capabilities for maximum efficiency and competitive advantage  • Design and implement workforce development programs including AI literacy training, reskilling initiatives, and change management to prepare teams for AI-enhanced roles  • Establish transformation governance frameworks and change management processes, measuring adoption rates, productivity improvements, and cultural shift indicators  • Champion internal AI tool adoption and process optimization, identifying high-impact use cases and coordinating pilot programs across departments  • Build organizational change capabilities by developing transformation playbooks, communication strategies, and stakeholder engagement approaches  • Foster AI-first culture through executive coaching, internal communication campaigns, and success story amplification to accelerate organizational buy-in  • Coordinate with AI Hub Internal Transformation Lead to synchronize transformation roadmaps, share best practices, and leverage cross-brand learnings and resources      Qualifications  Educational Background  Master's degree in Organizational Psychology, Change Management, Business Administration, or related field  Bachelor's degree with significant experience in consulting, organizational transformation or change management  No specific degree required if demonstrable track record and huge interest in large-scale AI organizational transformations  Professional Knowledge and Experience  8+ years in organizational transformation/consulting with 3+ years leading AI adoption or digital transformation initiatives  Proven experience designing and implementing enterprise-wide change programs in complex organizations  Deep knowledge of AI adoption challenges, workforce implications, and organizational change best practices  Experience with project management methodologies and large-scale initiative coordination  Other Skills & Competencies  Transformation expert with deep understanding of organizational change dynamics and human psychology  Strong project management and program coordination skills with ability to manage multiple concurrent initiatives  Exceptional communication and stakeholder engagement abilities across all organizational levels  Expert in change management methodologies with focus on culture, process, and technology adoption  Strong analytical skills to measure transformation success and adjust strategies based on data  Comfortable with remote, distributed collaboration; ~20-30% travel for on-site transformation activities    Why Nemetschek? Impact: We offer you a diverse position in a motivating work environment where you can realize your ideas. Sustainable Growth: In our sustainably growing and innovative company you have the chance to develop yourself further. Culture: With us you work in an international team with flat hierarchies and short decision-making processes, in which you can make a difference. Work-Life-Balance: We offer you various benefits in the areas of sports, nutrition, childcare and much more. Health: The health of all employees is important to us, which is why we offer you a wide range of health and preventive care services. Hybrid Way Forward: Through mobile working and variable working hours without core working hours, we enable you to be flexible, both professionally and privately.

Cyber Security Analyst Location: Stuttgart A role that inspires you Join a Cyber Security Operations team protecting modern cloud infrastructures in complex, international environments. As a Cyber Security Analyst, you will focus on advanced detection and response, helping to identify, contain, and prevent real cyber threats across critical systems. Key Responsibilities: Monitor and analyse security alerts in a 24/7 SOC environment, including on-call rotations (Tier 1/2). Perform incident triage and validation using logs, telemetry, and contextual data. Escalate confirmed or high-risk incidents to Tier 3 / Incident Response teams. Support forensic investigations, root-cause analyses, and containment activities. Develop, test, and refine detection rules and use cases aligned with MITRE ATT&CK. Participate in threat hunting and purple team activities. Develop and improve playbooks, runbooks, and cloud-specific response processes. Create dashboards and KPIs, analyse trends, and derive improvements from lessons learned. Your Profile: Degree in computer science, IT security, or a comparable qualification, or equivalent practical experience. 2–4 years’ experience in a SOC or cyber security operations environment. Hands-on experience in alert triage, incident response support, and detection rule development. Scripting skills in Python, PowerShell, or Bash. Strong knowledge of cloud security (Azure, AWS, or GCP) and container technologies (Docker, Kubernetes). Solid understanding of networking, Linux, and common security controls. Experience with SIEM platforms and threat intelligence tools. Willingness to travel and participate in on-call duties. Very good German and English skills. Security clearance (SÜ2) or willingness to obtain it. What’s on Offer? A hands-on role in modern cyber security operations. Exposure to real-world threats in cloud-based environments. Competitive remuneration and modern working conditions. Flexible working arrangements, including mobile working options.

Cyber Defense Consultant – Remote Freelance Position | Cologne, Germany | €700–800 per day Job Overview We are seeking an experienced Cyber Defense Consultant for a freelance engagement supporting cybersecurity operations for a client based in Cologne, Germany. This is a highly technical, hands-on security engineering and consulting role requiring deep expertise in incident response, threat detection, vulnerability management, and defensive security operations. You will be directly involved in investigating security incidents, performing forensic analysis, conducting vulnerability assessments, and working hands-on with security tools and systems. This role requires someone who can hit the ground running, provide immediate technical value, and deliver professional consulting services while defending against complex security threats. Key Responsibilities Hands-On Incident Response & Investigation Investigate and respond to security incidents from detection through containment and remediation Perform forensic analysis on compromised systems, including memory dumps, disk images, and log analysis Conduct malware analysis and reverse engineering to understand attack vectors and tactics Execute incident response procedures and technical playbooks during active security events Analyse security alerts from SIEM, EDR, and other security tools to identify genuine threats Perform root cause analysis and document technical findings for post-incident reports Engage directly with affected systems to contain threats and support recovery Security Tools & Platform Engineering Hands-on configuration and optimisation of the Microsoft Defender suite (Endpoint, Office 365, Identity, Cloud Apps) Build and tune detection rules, hunting queries, and automated response workflows Configure and maintain SIEM platforms, correlation rules, and security use cases Integrate security tools and orchestrate automated response capabilities Troubleshoot technical issues across security infrastructure and monitoring tools Test and validate security controls and detection capabilities Vulnerability Assessment & Testing Perform hands-on vulnerability scanning across infrastructure and applications Conduct penetration testing exercises to identify security weaknesses Exploit and validate vulnerabilities to assess real-world risk Analyse scan results and manually verify findings Work with technical teams to validate and test remediation efforts Maintain and configure vulnerability scanning tools and assessment platforms Threat Hunting & Proactive Defense Conduct proactive threat hunting activities across the environment Analyse network traffic, system logs, and endpoint telemetry to identify anomalies Investigate suspicious activity and potential indicators of compromise Develop and execute custom detection logic and hunting hypotheses Perform deep-dive analysis of advanced persistent threats Build custom scripts and tools to support security operations SOC Provider & Technical Coordination Work directly with external SOC analysts during incident investigations Provide technical guidance and escalation support for complex security events Review and validate alerts and findings from SOC providers Collaborate on tuning detection rules and reducing false positives Participate in technical reviews of SOC performance and capabilities Share threat intelligence and technical indicators with SOC partners Essential Requirements Technical Experience Minimum 10 years of hands-on cybersecurity experience, with at least 5 years in incident response Proven experience investigating and responding to complex security incidents Hands-on experience with vulnerability assessments and penetration testing Direct experience configuring and managing security tools (SIEM, EDR, IDS/IPS, etc.) Experience working technically with external SOC providers Strong hands-on experience with Microsoft Defender (Endpoint, Office 365, Identity, Cloud Apps) Experience performing forensic analysis and malware investigations Ability to work independently and integrate quickly into new environments Previous freelance or consulting experience in similar roles Core Technical Skills Expert understanding of incident response methodologies (NIST, SANS) Hands-on SIEM experience (Splunk, Sentinel, QRadar) Strong scripting skills (PowerShell, Python, Bash) Deep technical knowledge of Windows, Linux, and networking Experience with forensic tools (EnCase, FTK, Volatility) Packet analysis skills (Wireshark, tcpdump) Malware analysis techniques and tooling Penetration testing tools (Metasploit, Burp Suite, Nmap) Strong knowledge of MITRE ATT&CK and kill chain models Practical cloud security experience (Azure, AWS, or GCP) Language Requirements Fluent English (written and spoken) German language skills are essential Security Frameworks & Standards Practical knowledge of ISO 27001, NIST CSF, and CIS Controls Understanding of GDPR, PCI-DSS, SOX, and related regulations Experience validating and testing security controls Consulting Skills & Attributes Hands-on technical problem solver Able to make decisions under pressure during live incidents Self-starter who adapts quickly to new environments and tools Strong client-facing communication skills Professional consulting demeanour and presentation style Highly analytical with strong attention to detail Comfortable working in command-line environments Passion for emerging threats and attack techniques Excellent documentation and report-writing skills Ability to provide strategic security recommendations alongside implementation Desirable Banking or financial services sector experience Experience with SOAR platforms and security automation Background in offensive security or red teaming CTF participation or security research contributions Experience with threat intelligence platforms Cloud-native and container security experience Freelance Engagement Details Engagement Type: Freelance contract (Freiberufler) Location: Cologne, Germany (Köln) Duration: 12 months Work Model: Remote (German-speaking environment) Start Date: March 2026 Rate: Competitive daily rate based on experience Requirements: Valid German work permit or EU right to work Business Registration: Freiberufler or own company (GmbH / UG)  

Business Continuity Management Subject Matter Expert Location: Frankfurt A role that inspires you Join an international organisation as a Business Continuity Management Subject Matter Expert, where you will play a key role in strengthening organisational resilience and operational stability. You will act as the central expert for business continuity topics, working closely with senior stakeholders to ensure preparedness for disruptions across critical business functions. Key Responsibilities: Act as the subject matter expert for business continuity management across the organisation. Develop, maintain, and continuously improve the business continuity management framework. Conduct business impact analyses and risk assessments across critical functions. Design, implement, and test business continuity and crisis management plans. Advise senior management on resilience, continuity risks, and mitigation measures. Coordinate business continuity exercises, simulations, and training programmes. Ensure alignment with regulatory requirements and recognised standards (e.g. ISO 22301). Collaborate with risk management, IT, security, and operational teams. Support incident response and post-incident reviews to drive continuous improvement. Your Profile: Degree in business administration, risk management, IT, or a related discipline. Several years of experience in business continuity management, operational resilience, or risk management. Strong knowledge of BCM frameworks, methodologies, and standards. Experience conducting business impact analyses and continuity testing. Confident communication skills and experience advising senior stakeholders. Structured, pragmatic, and solution-oriented working style. Fluent English skills; German skills are an advantage. What’s on Offer? A key expert role with high visibility across the organisation. Opportunity to shape and mature business continuity and resilience capabilities. Close collaboration with senior stakeholders and international teams. Long-term professional development in a stable, regulated environment.

We are supporting a global market-leading organization in the search for an Senior In-house AI Strategy Consultant to drive AI vision, strategy, and transformation across the business. The role is based in Munich. YOUR ROLE: Shape and execute the company-wide AI strategy and roadmap. Act as the strategic bridge between business leadership and advanced AI capabilities. Identify high-impact AI opportunities and turn them into actionable, scalable solutions. Ensure AI initiatives align with long-term business goals while promoting responsible and efficient adoption. Support capability building and AI literacy across teams.   YOUR PROFILE: A strong academic background with advanced studies in a technical or analytical discipline, such as computing, engineering, or mathematics. Additional exposure to business, strategy, or consulting is highly beneficial. Solid expertise in next-generation AI technologies, including large language models, natural language processing, and modern machine-learning approaches, paired with the ability to evaluate their strategic relevance. A proven track record in roles connected to AI, data, or technology strategy — ideally with experience in environments where strategic thinking, transformation, or advisory work plays a central role. The ability to think holistically and analytically, connecting emerging technologies to tangible organizational outcomes. Strong communication and stakeholder skills, with confidence when engaging senior leaders and explaining advanced concepts in an accessible way.