Senior Security Engineer (m/f/d)

Permanent employee, Full-time * Germany (Munich office, hybrid)

Be our next roadsurfer!

We are looking for a Security Engineer to join our teams working on internal IT systems and our consumer-facing software applications. You will be part of our success story in delivering unique travel adventures to customers around the world and supporting our station teams to deliver a great experience every time.

An international work environment awaits you in the vibrant city of Munich if you are a creative problem solver who loves to drive solutions and is looking for a new adventure!

WHY ROADSURFER?

• TEAMSPIRIT & TEAMEVENTS: Look forward to a collegial atmosphere with flat hierarchies, lots of fun and great team spirit, as well as regular team events such as joint sports sessions, pizza & beer evenings, etc.

• FLEX WORK & WORKATION: You are flexible in terms of working hours. Our Flex Work Policy enables you to switch between office days and home office days or you can work fully remote. You can also work from abroad in Europe one month per year

• PERSONAL DEVELOPMENT: We support your personal and professional development through an individual Growth Plan and our Inhouse Academy

• CAMPER BUDGET: You get an annual camper budget to experience the #happyroadsurfing lifestyle for yourself

• JOB BIKE: Stay fit with our job bike offer

• DISCOUNTS: Use our Corporate Benefits Platform, the Travel Industry Card, and Family & Friends Discounts

• THE PLACE TO BE: Look forward to a beautiful, bright office with everything your heart desires, like table tennis and table football. You can also enjoy our weekly breakfast and lunch specials

• OFFICE DOGS: Dogs in the office are welcome

THE ROLE – YOUR PASSION

• You foster a security-first mindset within internal IT and software development teams, actively raising awareness about potential risks, their associated damages, and the importance of integrating security into every aspect of their work.

• You coordinate, conduct, and review external penetration and security testing of our internal IT systems and application landscape, ensuring thorough assessments and tracking the implementation of recommended improvements to close identified vulnerabilities.

• You develop and implement robust procedures and policies that ensure all systems meet regulatory security standards and compliance requirements, while empowering team members with clear guidance to stay proactive about their security responsibilities.

• You analyze, recommend, and implement strategic projects that enhance our overall security posture while balancing the organization’s productivity needs, such as adopting AI-driven productivity tools or securing comprehensive cybersecurity insurance.

• You stay ahead of the evolving cybersecurity threat landscape by continuously learning about emerging technologies and industry trends, while actively managing relationships with cybersecurity vendors to ensure Roadsurfer is always well-equipped to tackle new challenges.

• You collaborate closely with IT security staff and software development teams to implement effective security controls, rigorously track their performance, and manage post-mortem reviews to ensure continuous improvement after incidents.

• Your proactive approach ensures Roadsurfer maintains customer trust and regulatory compliance, protecting sensitive data and aligning all security efforts with the company’s commitment to excellence and transparency.

• You leverage automation and orchestration to streamline security operations, automating repetitive tasks and coordinating complex workflows to reduce human error and ensure that Roadsurfer’s defenses are consistently ahead of emerging threats.

WHAT YOU NEED TO SURF THE WAVE WITH US

• Act as an ambassador: You represent and promote a security-first culture, serving as a role model and advocate for best practices across all levels of the organization.

• Influence others: You inspire teams by clearly communicating the importance of cybersecurity, fostering collaboration, and driving alignment toward shared goals.

• Technical writing expertise: You excel at creating clear and concise documentation, including problem definitions, success measurements, evaluation of options, and actionable recommendations.

• First experience in IT and application security: You have foundational knowledge in security practices, such as OWASP, and understand key risks and mitigation strategies for applications and IT systems.

• Eager to obtain security certifications: You demonstrate a proactive mindset, seeking to enhance your expertise through industry-recognized certifications like CISSP, CISM, or CEH.

• Experience in achieving company security certificates: You have hands-on experience contributing to or leading efforts to achieve company-wide security certifications, such as ISO 27001, ensuring compliance and improving security standards.

Ready to surf?

We are looking forward to your application! If you have any questions, please drop a message to our recruiter Luca via team@roadsurfer.com and we will get back to you as soon as possible.

ABOUT #ROADSURFER

As a #roadsurfer you are part of an open, fast-growing team with ambitious goals and a great team spirit. We stick together and combine a brutal hands-on mentality with fun at work! It means shaping the future of outdoor travel and building an ecosystem for sustainable outdoor travel. We are more than Europe's largest campervan rental company. In 2021 we launched our platform roadsurfer spots in addition to our other products rent, abo and sales – a platform where you can discover and book unique camping spots. But that’s only the beginning. We are growing fast, so hop on board and join us on our journey. We’re looking for motivated and passionate people whose hearts beat for campers. Wanna spread the roadsurfer spirit across the globe with us?