Junior Cyber Strategy & Architecture Consultant (Fluent German required)

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber-attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!

You have a strong interest in cyber security and believe the following to be applicable to you?

As a Junior Cyber Strategy & Architecture Consultant (m/w/d) with focus on Architecture , you will work together with Senior or Principal Consultants to support our larger to smaller customers with the reinforcement of their security response posture, by executing and support to the following typical missions (but not limited):

• Support defining Information Security Architectures across enterprise, cloud, and hybrid environments, mapping business functions into the cyber security and IT environment;
• Perform architecture, maturity, and gap assessments and derive actionable improvement plans for existing security network infrastructure and security solutions for clients;
• Translate business, risk, and compliance requirements into architectural principles and technical controls;
• Support customers on their identity & access management journey by reviewing the existing risk posture as well as improving the control framework;
• Support customers with securing central infrastructure services like Active Directory, Entra ID or hybrid implementations, basically by translating business and security requirements into actionable technical solutions;Conduct hardening exercises and simulations to test the effectiveness of hardening measures by automated measuring of compliance to internal controlsframework by implementing scripting (python, .NET, PowerShell, …) and automation solutions (e.g. Terraform, Ansible, …);
• Stay up-to-date with the latest industry standards and best practices related to security architecture. Provide guidance and recommendations to clients on security architecture topics (on premise or cloud) like strategies, technologies, and tools;
• Assisting in reaching or maintaining compliance to information security legal, contractual, or internal requirements; this includes implementing semi-automated solutions (GRCasaCode and Continuous Compliance supported by scripted and automated solutions).

• Master’s or Bachelor’s degree in Computer Science, Information Security, or a related field;
• Professional certifications such CCNA-Security, CC (ISC2), CompTIA Security+ or CompTIA Network+, AZ-900, PCCSE etc. are beneficial but not needed for junior position;
• Proven practical knowledge in Security architecture patterns and principles, central IT administration services like networking or directory services is beneficial;
• Familiarity with architecture methodologies (e.g. SABSA, TOGAF) is an advantage
• Proven knowledge in automation (Terraform/Ansible/…) and coding (e.g. python, .NET, PowerShell, bash, …)
• A background in at least two general security/IT areas, such as cloud security in AWS/Azure/OCI, application/API security, firewalls, IDS/IPS, sandboxing, threat intelligence, vulnerability assessment and mitigation, SIEM, auditing, encryption, data loss prevention, threat intelligence, SASE, Zero-trust network access solutions, mobile application/system security, Cyber resilience and backup & recovery concepts;
• Excellent written and verbal German (C1-C2) and English communication skills, with the ability to effectively communicate complex concepts;
• You hold citizenship in one of the 32 NATO member states.

Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.

Our expectations:

Application documents must authentically reflect your own qualifications, personality, and motivation.

The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.

Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.

We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.

The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.