Cybersecurity Advisory Expert/ Product Owner

Yopeso has been developing a diverse range of software products, from large-scale applications to smaller solutions, for 19 years. With a growing team of over 250 employees across five locations, we are dedicated to fostering a culture of growth, transparency, and professionalism.

At Yopeso, we value authenticity, curiosity, and ambition. These values drive us to build strong connections within our community and with our partners, ensuring trust, integrity, and transparency in all our business practices. We strive to maintain the highest professional standards and continuously challenge ourselves to develop high-quality, high-performance, and secure software solutions.

Our approach is rooted in efficient collaboration among passionate professionals working in agile teams. Guided by curiosity and ambition, we strive to create products that are meaningful and impactful, while remaining true to our authentic selves.

What we offer:

• Competitive remuneration

• Remote work

• 24 days off per year and floating days

• Private clinic health services Regina Maria Medical Insurance

• Flexible benefits through Up multibenefits platform

• Referral bonus scheme

• Team events, online or at the office

• Training and development opportunities with allocated budget

• Professional Certifications

• Knowledge sharing context

Requirements

As a Cybersecurity Advisory Expert, you will play a pivotal role in enhancing security practices, mitigating risks, and ensuring compliance across various projects. You will provide expert guidance in cybersecurity domains, including Risk Management, Security Testing, Engineering Automation, Cybersecurity Requirements Management, and Vulnerability Analysis.

This role ensures that the team operates with technical leadership, quality assurance, and best practices. You will collaborate with teams, drive security initiatives, and take on hands-on technical tasks to fortify security across the organization.

Responsibilities:

• Conduct security assessments – Perform in-depth security assessments and audits to identify vulnerabilities and risks.

• Develop security strategies – Design and implement cybersecurity policies and strategies to protect critical assets.

• Provide expert consulting – Offer specialized cybersecurity advice to projects and initiatives.

• Ensure compliance – Align security measures with industry standards (IEC 62443, IEC 62351, NIST, CRA) and best practices.

• Stakeholder communication – Present findings, risk reports, and security recommendations to key stakeholders.

• Conduct training & workshops – Educate teams on cybersecurity best practices, tools, and threat landscapes.

• Collaborate with development teams – Support the technical implementation of security controls in engineering processes.

• Enhance security tools & automation – Utilize and integrate tools like Nessus, Metasploit, Wireshark, and scripting (Python, Java, C++).

Requirements:

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related field.

• 5+ years in cybersecurity consulting, risk assessment, or security advisory roles.

• Industry experience in finance, healthcare, critical infrastructure, or industrial systems (preferred).

• Hands-on expertise in network security, penetration testing, and compliance frameworks.

• CISSP (Certified Information Systems Security Professional) - preferred certification

• CISM (Certified Information Security Manager) - preferred certification

• CEH (Certified Ethical Hacker) - preferred certification

• Additional cloud security, network security, or risk management certifications are a plus.

• Proficiency in Nessus, Metasploit, Wireshark, and other vulnerability assessment tools.

• Experience with Python, Java, or C++ for security automation.

• Strong knowledge of firewalls, IDS/IPS, VPNs, and secure network architecture.

• Excellent communication, problem-solving, stakeholder management, and teamwork.

• Fluent in English (German is a plus).