SOC Analyst (f/m/d)

The Job

Are you passionate about cybersecurity?

• Analysis and assessment of network- and endpoint-based alerts in our customers’ infrastructures
• Derivation of sensible characteristics for automation of alert grouping
• Continuous improvement of implemented automations and classification mechanisms
• Preparation of comprehensive situational analysis reports for our customers, alongside with suitable recommendation for their response personnel
• Tight interaction with the DCSO TI and IR team on specific cases
• Responsibility for select customers as their focal contact point
• Coverage not only of solely technical, but also service relevant / business aspects
• Contribution to overall service development / improvement
• Process and service orientation

Skills

What we’re looking for^*

• At least 4 years of professional experience in the cybersecurity domain, thereof
• At least two years of practical experience in the security incident management area
• Sound understanding of state-of-the-art EDR/XDR solutions
• Solid understanding of IP networking, network analysis and IDS/IPS approaches
• Practical experience in presenting incident related information to a diverse audience
• Very good understanding of nowadays cyber threats and typical techniques used by adversaries
• Sound knowledge of the MITRE ATT&CK framework and experience with its application to routine SOC tasks
• Outstanding communication skills
• A highly investigative and curious mindset
• Fluent in English (at least C1 level), both, verbally and in writing
• German language skills on at least B2 level would be a plus
• Experience with / good knowledge of Splunk would be a plus
• Experience with / knowledge of the OSS IDS Suricata and respective rule writing would be a plus

*Courage to leave a gap: You don’t meet our requirements completely? We are still looking forward to your application!