Incident Response Manager (m/f/d)

Hapag-Lloyd is one of the world's leading liner shipping companies, connecting businesses and people across more than 600 ports worldwide. With a fleet of over 300 modern container ships and a vessel capacity of 2.5 million TEU, we keep global trade moving reliably every day.
Our global network spans 140 countries, 400 offices, and a growing portfolio of terminal and infrastructure investments. This scale enables us to deliver consistent, high‑quality service across continents and to support our customers in even the most complex supply chains.
When you join us, you become part of more than 18,000 colleagues working across borders, functions, and cultures, to not only to deliver quality for our customers, but to create innovation and opportunities across roles, regions, and perspectives.
We believe that every exploration is a chance to grow, and every port is a place to belong. Your Journey, Our Horizon

Join our Cyber Security Operations team and become a key contributor in protecting a global organization against evolving cyber threats. In this role, you will focus on Threat Detection and Response (TDR), working hands-on with security tools, incidents, and data to identify and mitigate risks. You will analyze security events, investigate incidents, and continuously improve detection capabilities and response playbooks. As an Individual Contributor, you'll work closely with experienced security professionals while taking ownership of complex investigations and driving improvements in our TDR processes. You will play a crucial role in translating real-world incidents into actionable insights that directly enhance our security posture. This position is ideal for someone who thrives in a fast-paced environment, enjoys deep technical challenges, and wants to make a tangible impact on enterprise-scale cybersecurity operations.

• Investigate and respond to security incidents across endpoints, networks, and cloud environments
• Perform threat hunting activities to proactively detect suspicious behavior and emerging threats
• Analyze alerts and logs using tools such as SIEM, EDR, and network monitoring platforms
• Conduct root cause analysis and document findings in clear, actionable reports
• Contribute to the development and refinement of detection rules and response playbooks
• Collaborate with cross-functional teams to contain incidents and minimize business impact
• Continuously improve TDR processes, tooling, and operational efficiency
• Convey the proper security severity by explaining the risk exposure and its consequences to non-technical stakeholders
• Ensure the effectiveness and efficiency of the security incident response services and processes

• Bachelor's degree in IT, Cybersecurity, or a related field (or equivalent experience)
• Solid hands-on experience in Threat Detection & Response, SOC, or Incident Response roles
• Experience in identifying, managing, and producing executive-level incident updates, reports, and recommendations to guide decision-making and risk management
• Relevant certifications such as GCIH, GCFA, or other certifications related to incident response and threat detection
• Strong understanding of security fundamentals, including network protocols and system architecture
• Experience with tools like Microsoft Sentinel, Microsoft Defender, QRadar, or similar platforms
• Analytical mindset with the ability to work independently and prioritize effectively
• Strong communication skills to articulate technical findings clearly

• Exciting challenges, real responsibility, and the opportunity to make your own ideas visible in a wide range of projects
• Individual development through our Hapag-Lloyd LEARNING CAMPUS, international perspectives, and mentoring programs that genuinely advance your career
• Attractive compensation (13 monthly salaries + vacation pay) as well as strong social benefits in a financially stable company
• At least 28 days of vacation, flexible working hours, capital forming benefits, and a future oriented pension plan (MYPENSION)
• A modern hybrid work model (3 days office / 2 days remote) and a workplace in a prime downtown location at Ballindamm
• Mobility benefits such as subsidies for public transportation, as well as bicycle leasing via JobRad
• Comprehensive health and sports offerings (e.g., yoga, sailing, company doctor) plus EGYM Wellpass
• A company restaurant with freshly prepared meals every day and a coffee bar with a wide selection

Please use our online tool for applying with us.

We ask staffing consultants and recruiting firms to refrain from sending us unsolicited profiles and CVs of potential candidates for this or other positions advertised on our website.