Cyber Security Center | SIEM | SOAR
- Capture customer requirements and design the SOC as a Service implementation.
- Actively participate in the transformation and implementation phase, supporting Competence Centers and Project Managers until operational readiness.
- Define hardware and software requirements, as well as necessary licenses for the SOC Engineering team and for our customer environments.
- Automate security processes and analyses with SOAR (e.g., Splunk SOAR, Python, and PowerShell).
- Operate our SIEM infrastructure and administer Windows and Linux environments.
- Investigate security incidents and undertake general response tasks.
- Analyze errors and common integration problems.
- Be responsible for processes related to change management, ticketing systems, and SLA/OLA.
Your Profile
- Several years of practical experience in the architecture and implementation of complex ICT projects with a focus on Cyber Security Centers and SIEM solutions.
- Experience with automation processes (SOAR) and Threat Intelligence.
- Understanding of common data structures (e.g., XML, JSON).
- Experience with "Data Parsing", Regex, Data Classification & Normalization, as well as network protocols (TCP, TLS, etc.) and network security infrastructures (Firewall, IDS, LAN).
- German language skills (C1) and English language skills (B2).
- Advantageous: Certification as Splunk Certified Administrator and Splunk Cluster Admin.
Benefits & More
- Flexible working: Home Office, Remote Work, Flexible Hours, Sabbatical.
- 26 vacation days & days off on December 24th and 31st.
- Paid lunch break, canteen & meal vouchers.
- Free A1 Internet plus further discounts for Family & Friends.
- Company mobile phone, also for private use.
- A1 internal job market & opportunities for further training.
- (Mental) Health offers.
We believe in matching your salary to your qualifications and experience. This can be significantly above the collective agreement and starts from €70,000 gross per year, all-in.