IT Security AI-Redteamer

Dkb
Municipality of Madrid, Spain
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Municipality of Madrid, Spain

Tech stack

Kubernetes Security
API
Artificial Intelligence
Amazon Web Services (AWS)
Automation of Tests
Bash
Burp Suite
Cloud Computing Security
Computer Security
Python
Kali Linux
Natural Language Processing
NMap
Open Web Application Security
Systems Development Life Cycle
Cloud Services
Red Team (Cyber Security)
Security Information and Event Management
Systems Integration
Web Applications
Data Logging
Cloud Platform System
Grafana
Software Security
GIT
Gitlab-ci
Kubernetes
Metasploit
Nessus
GPT

Requirements

Job Summary Si desea conocer los requisitos para este puesto, siga leyendo para obtener toda la información relevante. Use AI driven offensive security techniques to proactively identify, validate, and communicate exploitable vulnerabilities across DKB's digital banking products, cloud platforms, APIs, and internal systems. In this high impact role you will run redteam engagements, shape remediation priorities, and help establish a scalable offensive security capability that protects millions of customers. Responsibilities Plan and execute AI-assisted red team engagements across web applications, APIs, cloud workloads and infrastructure, and deliver prioritized technical reports and executive summaries. Provide clear remediation guidance and validate fixes, prioritizing critical and high findings. Configure, tune and maintain offensive tooling and develop automation playbooks that reduce manual triage and false positives. Integrate recurring security checks into CI/CD pipelines and platform processes to enable continuous testing and attack-surface reduction. Run remediation workshops and knowledge transfers, and produce reusable runbooks for product and platform teams. Coordinate triage and handoff with SOC, IT Ops, product teams and central IT Security, and support governance and compliance mapping (OWASP, API Security Top 10, CVSS). Qualifications Proven hands on experience in red team or offensive security testing across web apps, APIs, and cloud environments. Solid understanding of OWASP Top 10, API Security Top 10, CVSS, secure SDLC, threat modeling. Experience with AI assisted offensive tooling or demonstrable integration of ML/NLP techniques into offensive workflows (e.g., Mythos, GPT Cyber). Strong practical experience with Burp Suite, OWASP ZAP, Nmap, Metasploit, Nessus/OpenVAS, and Kali Linux. Solid cloud security knowledge, particularly AWS, and experience with Kubernetes and container security. Scripting and automation skills (Python, Bash) and experience integrating security checks in Git/GitLab CI or equivalent CI systems. Excellent written and verbal communication skills in English. Experience with SIEM/logging platforms, OpenSearch, Grafana, or production monitoring stacks and prior experience in financial services or regulated environments are a plus. Consideration Got the feeling not to match every single requirement? Don't worry We encourage you to apply anyways, even if your qualifications do not align perfectly. You might still be just the right candidate for us Culture & Benefits From Morning Daily to Afterwork Drink, team spirit is essential to us. The heart of our togetherness is that we truly are connected with each other: We not only share fun & laughter, but also honest opinions - because that's how we grow: We exchange ideas, give support in our personal development, and celebrate success together xiphteb Besides our great community, we also offer numerous other benefits. J-18808-Ljbffr

Apply for this position