Beschreibung

In this role, you will be at the forefront of security operations, continuously monitoring data and analyzing incidents. Your work will involve collaboration with teams to enhance security measures, respond to threats, and improve incident response processes.

Anforderungen

• •At least 3 years of relevant professional experience as a security analyst or similar role in a security operation center
• •Completed studies in computer science, information security, IT security, cybersecurity, or comparable hands-on training
• •Certified Information Systems Security Professional (CISSP) and/or Global Information Assurance Certification (GIAC) or similar certifications
• •Experience in solving problems and conflicts in complex corporate structures
• •Strong problem-solving and troubleshooting skills
• •Ability to work well under pressure while maintaining a professional image
• •Ability to perform independent analysis of complex problems
• •Ability to communicate complex and technical issues to diverse audiences
• •Strong decision-making capabilities
• •Knowledge of frameworks and standards in the SOC environment such as Cyber Kill Chain, MITTRE or similar standards
• •Proven record in using SIEM solutions, XDR, EDR, NDR and PAM
• •Technical knowledge of products such as Splunk, SentinelOne, Proofpoint, Cyberark
• •Technical expertise in network security, including VPN, firewall, web server security and Cloud
• •Specific OT and IoT knowledge
• •Knowledge of at least one scripting language (e.g. Perl, Python, PowerShell)
• •Precise, responsible mindset and reliability
• •Very good presentation and moderation skills
• •Entrepreneurial mindset and strong analytical and conceptual skills
• •Highly proficient in spoken and written English
• •Willingness to learn the local language

Aufgaben

• •Respond to security incidents according to the incident response policy
• •Provide technical guidance to first responders during incidents
• •Deliver timely updates to stakeholders and decision makers
• •Communicate investigation findings to enhance information security
• •Validate and maintain incident response plans and processes
• •Compile and analyze data for management reporting and metrics
• •Monitor information sources for current attacks and trends
• •Analyze new threats and establish use cases with security engineers
• •Conduct root-cause analysis and document findings
• •Create runbooks for frequently occurring incidents
• •Develop new use cases with security engineers to improve capabilities
• •Onboard new data sources and systems to expand existing tools
• •Collaborate with infrastructure teams and the information security officer
• •Support an open feedback culture and a learning organization
• •Identify potential security risks and report them to authorities

Tools & Technologien

Benefits