Information Security Consultant

Security Consultant (m/f/d) | Defence Sector | Remote | 8-month Contract

Our client is a leading defence-sector technology organisation in Germany, supporting a large-scale initiative to design and implement a highly secure information environment enabling multiple security domains. They are seeking a freelance Security Consultant to define, implement, and optimise security architectures, processes, and controls across a complex, high-security IT landscape.

Project Details:

Duration: May – December 2026

Workload: 5 days per week (full-time)

Location: Remote (95%) | Bonn (5%)

Responsibilities:

• Design and develop security architectures and strategies for a high-security, multi-domain information environment.
• Define and implement security standards, policies, and governance frameworks aligned with regulatory requirements.
• Conduct threat analysis, threat hunting, and support incident response activities across the environment.
• Support the design, optimisation, and operation of Security Operations Center (SOC) processes.
• Ensure compliance with relevant standards (e.g. ISO 27001, BSI IT-Grundschutz, DSGVO).
• Secure cloud and container environments (e.g. AWS, Azure, Kubernetes, OpenShift).
• Advise on secure system integration and support certification processes in regulated environments.
• Facilitate workshops with stakeholders to align on security requirements and best practices.
• Review technical concepts and provide risk-based assessments and recommendations.
• Support vendor selection, tenders, and security-related evaluations.

Requirements:

• Proven experience as a Security Consultant, IT Security Specialist, or Security Architect in complex IT environments.
• Strong expertise in IT security architecture, cloud security, and infrastructure security.
• Hands-on experience with SOC operations, SIEM tools, incident response, and threat hunting.
• Solid knowledge of security standards and frameworks (e.g. ISO 27001, BSI IT-Grundschutz).
• Experience securing cloud and container platforms (AWS, Azure, Kubernetes, OpenShift).
• Understanding of network, Windows, and Linux security.
• Experience in regulated or high-security environments (e.g. public sector, defence, finance).
• Relevant certifications (e.g. CISSP, CISM, cloud security) are highly desirable.
• Strong analytical, communication, and stakeholder management skills.
• Fluent German and good English language skills.