IT Security Engineer

Festool is a German company specializing in the production of professional power tools and system solutions for craftsmen—primarily in the woodworking, construction, and finishing industries.

The company focuses above all on high quality, precision, and durability, as well as a so-called system approach, where its tools and accessories form a cohesive working ecosystem. It also places strong emphasis on innovation, ergonomics, and user safety.

• Minimum 2-3 years of experience in IT security, cybersecurity, or system security administration.
• Experience in security incident analysis and response.
• Knowledge of security tools (e.g. SIEM, EDR, log analysis tools, vulnerability scanners).
• Understanding of vulnerability management and security monitoring processes.
• Knowledge of network security and IT system architecture.
• Strong analytical and problem-solving skills.
• Very good English communication skills (required for working with international teams).
• cysa+ , SC200 certificate

Nice to have:

• Security certifications (e.g. Security+, CEH, CISSP, CISM).
• Experience with penetration testing or malware analysis.
• Experience in OT / ICS environments.
• Experience working in international teams.

Security Incident Response:

• Analyze and handle security incidents (e.g. phishing, compromised accounts, malware activity).
• Perform technical analysis, review system logs, and support forensic investigations.
• Prepare incident reports and communicate findings to relevant stakeholders.
• Cooperate with international IT teams and external service providers.
• Handle incidents at 2nd and 3rd level support.

Vulnerability Management & Security Monitoring:

• Participate in the vulnerability management process and handle identified security weaknesses.
• Monitor systems for potential security threats and analyze security events.
• Configure and operate SIEM systems.
• Review vulnerability scan results and coordinate remediation with IT teams.
• Support internal and external penetration testing activities.

Security Engineering & Architecture:

• Support the design and development of IT security architecture.
• Assist with network security and OT security topics.
• Evaluate new security tools, technologies, and solutions.

Policies & Compliance:

• Support the creation and maintenance of security policies, procedures, and standards.
• Participate in security audits and ensure compliance with company security policies.

Consulting & Cross-department Cooperation:

• Work closely with IT teams and business departments.
• Provide guidance on IT security topics in daily operations.
• Participate in security meetings, audits, and due-diligence activities.