This job offer is no longer available
About
Monitor and analyse security alerts in a 24/7 SOC environment, including on-call rotations (Tier 1/2). Perform incident triage and validation using logs, telemetry, and contextual data. Escalate confirmed or high‑risk incidents to Tier 3 / Incident Response teams. Support forensic investigations, root‑cause analyses, and containment activities. Develop, test, and refine detection rules and use cases aligned with MITRE ATT&CK. Participate in threat hunting and purple team activities. Develop and improve playbooks, runbooks, and cloud‑specific response processes. Create dashboards and KPIs, analyse trends, and derive improvements from lessons learned. Your Profile:
Degree in computer science, IT security, or a comparable qualification, or equivalent practical experience. 2–4 years’ experience in a SOC or cyber security operations environment. Hands‑on experience in alert triage, incident response support, and detection rule development. Scripting skills in Python, PowerShell, or Bash. Strong knowledge of cloud security (Azure, AWS, or GCP) and container technologies (Docker, Kubernetes). Solid understanding of networking, Linux, and common security controls. Experience with SIEM platforms and threat intelligence tools. Willingness to travel and participate in on‑call duties. Very good German and English skills. Security clearance (SÜG). What’s on Offer?
A hands‑on role in modern cyber security operations. Exposure to real‑world threats in cloud‑based environments. Competitive remuneration and modern working conditions. Flexible working arrangements, including mobile working options.
#J-18808-Ljbffr
Languages
- English
Notice for Users
This job was posted by one of our partners. You can view the original job source here.