Add your offcanvas content in here

The Company

Portfolio

Overview Application Security

Simplifying your IT-security journey.

Career

With us, you do IT security – and we pave the way for you.

Working at mgm security partners means: arriving and moving forward. We are proud of an open, honest environment in which people support and strengthen each other. Here you will find opportunities to develop – no walls. And you can experience how your skills make a difference: for you, for us and for our customers.

»For us, real cooperation means talking openly about everything – about burdens, opportunities and ideas. This creates a team spirit in which everyone can develop their potential.«

Alois Richthofer, Authorized Officer & Shareholder, mgm security partners GmbH

What you can
rely on with us

Challenges drive us.

We grow with what we do – but we also know that balance is crucial. That's why we demand performance with discernment and create an environment in which energy, joy and development remain in balance.

What defines us is cohesion

We support each other, share experiences and create a working environment in which trust and cooperation are paramount.

We believe in collaboration as equals.

Respect, trust and mutual appreciation create an environment in which everyone can develop their strengths – regardless of their role.

Control may be good, but we think trust is better.

In an increasingly complex world, we don't rely on even more rules and regulations, but on lived trust wherever possible. This creates freedom, makes us more agile, and ensures an environment in which everyone enjoys taking responsibility.

Be yourself – and grow beyond yourself.

We create space for independence, ideas and development because we are convinced that diversity is our common strength.

Superficiality is not our thing. We like conversations with substance.

Open, honest and respectful – listening, understanding, taking seriously: that is real communication for us.

Our 'we' extends beyond national borders.

With us, you'll work in an international environment with colleagues in Germany, Portugal, and Vietnam. This opens up diverse perspectives and exciting intercultural encounters.

Benefits & Hard Facts

Qualified flextime

With us, you have a great deal of freedom in scheduling your working hours and can work ahead or make up hours.

Overtime compensation

Overtime is always fully compensated – through time off or payment.

Full-time & Part-time

We offer you a permanent full-time position (40 hours per week) or a part-time position with a flexible number of weekly hours.

Vacation & Sabbatical

With us, you have 30 days of vacation per year – and additionally the option to take a sabbatical.

Mobile Working

Whether you prefer working from home or in the office, the choice is yours within our flexible arrangement.

Working Abroad

Would you like to work remotely abroad for a while? You are welcome to do so at one of our locations in France, Portugal, the Czech Republic, or Vietnam.

Professional Development

We support your professional development – from recognized certifications to individual training courses.

Subsidies & Extras

From company pension schemes to subsidies for job tickets – we support you with financial extras in your daily life.

Feedback Discussions

We conduct an annual feedback discussion with you – but of course, you can address topics with us at any time.

Your Physical Well-being

All-round supply of coffee, tea, water, juice, fruit and healthy snacks.

Celebrations & Excursions

We not only work across locations – we also regularly come together for joint celebrations and excursions.

Break Rooms

Joint lunch or a break in between: Our cozy break and 'hygge' rooms offer you the perfect place for it.

"I returned after 4 years – because of the people and the working atmosphere. And the best thing about it: all the colleagues from back then are still there."

Maximiliane Mayer, Head of Information Security Consulting

What You Can Do With Us

Our skill profile and the range of assignments are diverse – whether software, infrastructure, IoT, cloud, or LLM, with us you get insights into all areas of IT security. The following three focus areas are at the center of this:

Analysis

You penetrate applications, apps, and systems, find vulnerabilities that others overlook, and thus protect the products of tomorrow. Your tools are penetration tests, in-depth code analyses, and thorough security assessments of architectures and concepts.

Consulting

You apply your knowledge and experience to help "turn the big wheels". You ensure that the systems that are designed or developed today and will fulfill central tasks tomorrow are resistant to misuse and attacks.

Trainings

Expertise gains value when shared: If you have achieved expert status and enjoy sharing your knowledge and promoting other IT professionals, you have the opportunity to contribute as a trainer in addition to your projects.

Your journey
with us

As a beginner

In three learning phases of approximately one month each, you will gradually build up in-depth technical knowledge and practical experience, focusing on penetration testing. This creates the foundation on which your entire IT security career can stand securely.

  • An experienced team member will accompany you as a coach and introduce you to the world of application security.
  • In our team seminars, through self-study, and through constant exchange with your colleagues, you will gradually expand your knowledge.
  • You will get to know our reporting tool Limeviper.
  • During this phase, you will practice penetration testing on training applications.
  • Shoulder Surfing: You are present when your coach performs penetration tests and can actively contribute with questions and your own ideas.
  • You will take on initial subtasks in real customer projects, searching for vulnerabilities in parallel with your coach, comparing and discussing the results with them.
  • Penetration testing involves more than just technology: reporting, organization, and (customer) communication. You will also learn this step by step during this phase.
  • Your active participation grows steadily: You will initially take on smaller, then increasingly larger parts of a penetration test independently, until you finally carry out entire penetration tests yourself.
  • Your coach will accompany you, look over your shoulder, and provide feedback so that you can learn safely and expand your skills.
  • And even when you are already handling projects completely independently, experienced colleagues are at your side to ensure that every assignment is completed to the highest standard.

With each penetration test, your technical know-how grows, and with it, your ability to creatively question systems. This is precisely what distinguishes good security experts: well-founded knowledge that can be applied again and again to uncover vulnerabilities.

Building on this, you can further develop your career, for example, as an Application Security Consultant. Depending on your focus, various directions open up:

  • Conception of software security and security architectures
  • Consulting on the establishment of a Secure Software Development Lifecycle (SSDLC)
  • Role as a security expert in agile projects: reviewing user stories, supplementing requirements, ensuring security during implementation
  • DevSecOps operator or consultant
  • Establishment and implementation of application security programs at our customers

As a professional

Whether you are an experienced security expert or a career changer from software development or other related IT areas, we offer you the opportunity to actively shape the IT security landscape with challenging, diverse tasks that allow you to grow – and us with you.

Lean Application Security is our streamlined approach to integrating security into the software development process. For many of our clients, it is the starting point for the sustainable introduction of security into the SDLC. We continuously improve it and incorporate current project experiences. We look forward to your support with your knowledge and creativity.

We don't rely on standard solutions for our work. With our self-developed tools, we set our own standards – independently, practically, and based on real project experience.

  • ATLAS
    With ATLAS, we have created our own platform for automated security tests. It is part of the A12 low-code platform, which the Bavarian State Tax Office uses for its ELSTER digitization program.

Security Test Platform mgm ATLAS

  • Limeviper
    Limeviper is our own tool for reporting. It relieves pentesters of the tedious part of documentation, ensures more quality assurance, and delivers the results as structured data that customers can directly incorporate into their workflows.

Reporting Tool Limeviper

As part of the mgm group, we are closely connected to mgm technology partners – and thus involved in many additional, exciting and varied large-scale projects. From ELSTER Online and Deutsche Rentenversicherung to Modul F and webshops for BMW and Lidl: each project brings its own security challenges and offers you the chance to use your know-how in a wide variety of contexts.

Interested? Then we want to get to know you!