Your tasks
- Real-time monitoring, analysis, triage of security events and alarms based on relevant security threats and risks
- Perform in-depth analyzes of security incidents to understand root cause as well as impact to derive recommendations for handling and elimination
- Support of our cybersecurity engineers for continuous improvement in the CDRC (e.g. through creation or optimization of monitoring or alarm rules)
- Timely addressing of security incidents in cooperation with the whole team
- Monitoring of the current threat level and starting of accompanying proactive analyzes / threat hunting
- Creating and expanding documentation for the global CDRC team (such as SOPs, reference standards, architecture charts)
- Conducting training courses on security incidents and best practices for our employees
- Possibility of working in a shift model in the future
Your qualifications
Engineering degree in Computer Science, Information Security from reputed college / UniversityMin. 2-5 years of professional experience in the cybersecurity in a multinational companyExperience in using security tools and technologies such as SIEM systems, SOAR, firewalls, intrusion detection systems and anti-virus softwareGood analysis knowledge of various common logs formatsExperience with cloud security and technologies such as AWS, Azure, M365Knowledge of security frameworks and standards such as MITRE ATT&CK, NIST, ISO 27001Experience in the following fields is desirable vulnerability analysis, threat intelligence, threat hunting or incident responseIdeally you have an interest in the topics of machine learning and algorithmsExperience in IT service management (e.g. ITIL) and existing security certifications are an advantageCapabilities to analyze and eliminate complex issuesExperience with Windows and Linux operating systemsTeam Player, Excellent communication skills with fluency in speaking & writing English; German is added advantageSkills Required
Cybersecurity, SOAR, Firewalls, Aws, Azure, M365