Security Engineering Manager (m/w/d) at Maltego Technologies GmbH

Munich, Bavaria, Germany -

Full Time

Start Date

Immediate

Expiry Date

24 Sep, 26

Salary

100000.0

Posted On

26 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Operations, Incident Response, Multi-cloud Security, Vulnerability Management, People Leadership, SIEM, EDR/XDR, Endpoint Security, Identity Management, Secure-by-Default Standards, SaaS Security, Technical Mentoring, Security Awareness, AI Security Guardrails, Risk Translation, Technical Authority

Industry

Software Development

Description

Why we need you The Security Engineering Manager owns Maltego’s operational security function and leads the team that protects our infrastructure, product, and corporate environment. This is a hands-on technical role combined with people leadership You will run detection and incident response, harden our multi-cloud and endpoint estate, embed security into engineering workflows, and build the practices and team that scale with the company. You act as the technical authority for operational security while partnering closely with Engineering, Corporate IT, and our Governance, Risk & Compliance (GRC) function. Reporting initially to the Head of Infrastructure & Operations, you set operational security direction independently and translate risk into concrete, prioritized action. Success in the first phase means a well-instrumented and measurable security posture, reliable incident response, and a team operating to clearly defined technical standards. What to expect Key Responsibilities: Own detection, triage, and resolution of security incidents across cloud, product, and corporate environments – ensuring fast, reliable response and continuously improving incident response playbooks and tooling (Microsoft Sentinel, Microsoft Defender). Own operational security monitoring across the multi-cloud estate (Azure as primary, plus AWS and GCP), tuning detections, alerting, and response workflows for fast and reliable threat handling. Drive vulnerability management end-to-end – coordinating scanning, prioritization, and remediation tracking with Nessus and Snyk in partnership with Engineering. Define security baselines and secure-by-default standards, and embed them into the software development lifecycle and infrastructure, integrating tooling such as Snyk into engineering workflows. Manage endpoint and identity security across Windows and macOS fleets using Microsoft Intune, Defender, and Purview, ensuring consistent hardening and data protection. Build and lead the operational security team – line-managing and mentoring engineers, contractors, and working students toward clear technical and delivery standards. Plan and deliver security awareness and enablement across the organization, including onboarding content and phishing simulations, translating risk into plain language for non-technical audiences. Partner with the AI transformation team to engineer security guardrails and monitoring for the responsible use of AI across the organization. Your profile in short Required Qualifications (Must Have) 5+ years in security operations or security engineering, preferably in a SaaS or B2B software environment. Experience owning security outcomes or domains end-to-end (not only contributing to them). Hands-on incident detection and response experience, including SIEM (Microsoft Sentinel), EDR/XDR (Microsoft Defender), and cloud security monitoring. Strong technical fluency across multi-cloud infrastructure (Azure primary; AWS and GCP) and endpoint/identity management (Microsoft Intune, Windows, macOS). Experience with vulnerability management and developer security tooling such as Nessus and Snyk, including coordinating remediation with engineering teams. Proven ability to define and embed security baselines and secure-default standards into engineering and infrastructure. Proven people leadership experience, including setting expectations, developing engineers, and holding teams accountable for delivery and technical quality. Clear communicator able to translate security risk into plain language for engineers and non-technical stakeholders. Comfortable acting as the primary operational security practitioner, setting technical direction independently while collaborating with a separate GRC function. Professional proficiency in English. Preferred Qualifications (Nice to Have) Experience producing audit evidence for ISO 27001 / SOC 2 control operation and working with compliance automation platforms such as Vanta. Experience with Microsoft Purview for data security, DLP, or information protection. Relevant certifications such as CISSP, CISM, or Azure security certifications (e.g., AZ-500 / SC-200, SC-900), GIAC certification (GCIH, GCIA). Experience in engineering security guardrails or monitoring for AI / LLM usage. Experience in a scale-up or growth-stage company where security functions are being built rather than inherited. Professional proficiency in German Your tech skills About this opening Team & Leadership This is a people-management position. You will begin by coordinating external contractors and working students, and are expected to lead a dedicated operational security team as Maltego scales – owning hiring, development, and performance for your direct reports while remaining hands-on technically. Current Environment (you will shape and evolve this) Cloud: Azure (primary), AWS, GCP. Detection & response: Microsoft Sentinel (SIEM), Microsoft Defender (EDR/XDR). Data & endpoint: Microsoft Purview, Microsoft Intune, Windows and macOS. Application & vulnerability security: Snyk, Nessus. Compliance automation: Vanta. Why you will love Maltego Here are some of the reasons why you will love Maltego: Insights into the daily operations of a fast-growing tech scale-up. Competitive compensation with a bonus/commission structure based on pipeline creation. Inclusive, diverse culture, where your voice and contributions matter. Supported language courses Mental health support via .nilo (psychologists & digital tools) At Maltego, we are committed to supporting diversity and inclusion in our organization. We are an equal opportunity employer. We welcome applications from all individuals regardless of race, religion, color, nationality, gender, sexual orientation, age, or disability. Location Our Munich office Required documents / information Please submit a CV and cover letter detailing your experience and motivation for joining Maltego! About us Maltego is the all-in-one investigation platform that accelerates complex cyber and OSINT investigations from hours to minutes. The Maltego platform powers preliminary quick OSINT investigations for digital profiling with Maltego Search as well as complex link analysis for large datasets with Maltego Graph. Through Maltego Evidence and Maltego Monitor, the platform enables investigators to collect, monitor, and preserve social media intelligence in real-time for prosecution and public safety. Whether cyber threat intelligence teams or law enforcement, Maltego equips your teams with the most essential and relevant data, with out-of-the-box access to common data sources and over 100 ready-made connectors to more. Mine, merge, and map all your essential intelligence in one place, and uncover hidden truths with Maltego! Learn more about how we can empower your investigations at www.maltego.com.

Responsibilities

Lead the operational security function by managing detection, incident response, and hardening across multi-cloud and endpoint environments. Build and mentor a security team while partnering with Engineering and GRC to embed security into development workflows.