Talent.com

Soc analyst Jobs in Rüsselsheim

Jobalert für diese Suche erstellen

Soc analyst • russelsheim

Zuletzt aktualisiert: vor 3 Tagen
Cyber Incident Handling Analyst

Cyber Incident Handling Analyst

SOSiWiesbaden, Germany
Cyber Incident Handling Analyst.The Cyber Incident Handler will perform analytic analysis of cyber related events to detect and deter malicious actors using SIEM technologies, which correlate multi...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Berater / Business Analyst Softwareprojekte (all genders)

Berater / Business Analyst Softwareprojekte (all genders)

DATAGROUP Consulting Services GmbHMainz, Rheinland-Pfalz, Deutschland
Quick Apply
Berater / Business Analyst Softwareprojekte (all genders).Berater / Business Analyst Softwareprojekte (all genders).DATAGROUP ist einer der führenden deutschen IT-Dienstleister – dank unsere...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Business Analyst (m / w / d) mit SAP R / 3 & S / 4HANA

Business Analyst (m / w / d) mit SAP R / 3 & S / 4HANA

Amadeus Fire AGWiesbaden, Hessen, DE
Quick Apply
Business Analyst (m / w / d) mit SAP R / 3 & S / 4HANA Referenz 12-215135 Sie sind auf der Suche nach einer neuen Herausforderung als Business Analyst , kommen aus der Immobilienbranche und haben fundierte...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
IT Business Analyst (m / w / d) Informatica

IT Business Analyst (m / w / d) Informatica

APRIORI – BUSINESS SOLUTIONS AGWiesbaden, Hessen, DE
Quick Apply
Unser Kunde ist eine der bedeutendsten Banken in Deutschland und ein vertrauensvoller Partner für Unternehmen, Institutionen und öffentliche Einrichtungen. Das Unternehmen bietet spannende Karrierem...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Senior Business Analyst

Senior Business Analyst

Axiom Software Solutions LimitedMainz, RP, DE
Homeoffice
Quick Apply
Technical Requirement Workshops.Organize, facilitate, and follow up on.Business Process Analysis & Transformation.Analyze existing processes and document technical requirements for system integ...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Analyst : in (Gebäude-) Wertermittlungen

Analyst : in (Gebäude-) Wertermittlungen

HDI AGMainz
Analyst : in (Gebäude-) Wertermittlungen.Wir bieten Dir die Möglichkeit, immer wieder neue Wege zu gehen und uns so gemeinsam weiterzuentwickeln. Beratung von internen und externen Kund : innen zu Versi...Mehr anzeigenZuletzt aktualisiert: vor 20 Tagen
VIE Customer Experience Analyst

VIE Customer Experience Analyst

StellantisRuesselsheim
VIE Customer Experience Analyst.Dans le cadre de votre mission VIE au sein de Stellantis, vous rejoindrez la direction de notre filiale commerciale allemande. Vous rejoindrez plus particulièrement n...Mehr anzeigenZuletzt aktualisiert: vor 20 Tagen
  • Gesponsert
(Junior) Analyst (m / w / d) Data Analytics

(Junior) Analyst (m / w / d) Data Analytics

SyncworkWiesbaden, DE
Sie arbeiten flexibel in interdisziplinären Projektteams aus Kunden- und Syncwork-Mitarbeitenden, direkt bei unseren Kunden vor Ort, von unserem Office bzw. Sie managen und analysieren gro&szli...Mehr anzeigenZuletzt aktualisiert: vor 4 Tagen
Security Architect Cyber- und Informationssicherheit (all genders)

Security Architect Cyber- und Informationssicherheit (all genders)

adesso SEHerriotstraße 1, Frankfurt, Germany
Nimm eine beratende Rolle ein : .Du führst Beratungen zu Architektur und Strategie durch und erstellst übergreifende Konzepte. Stehe unseren Kunden beratend zur Seite : .Du berätst Kunden zu Security-Ko...Mehr anzeigenZuletzt aktualisiert: vor 20 Tagen
  • Gesponsert
Junior Analyst Kreditmanagement (w / m / d)

Junior Analyst Kreditmanagement (w / m / d)

Aareal Bank AGWiesbaden, DE
Du hast Freude daran, mithilfe deiner analytischen, prozessorientierten Denkweise die Bonität unserer Immobilienkunden zu beurteilen? Dein Teamgeist ist genauso stark ausgeprägt wie dein Interesse,...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Digital Video Analyst - German Speaker

Digital Video Analyst - German Speaker

Cross Border TalentsMainz, Germany
Digital Video Analyst German Speaker (On-site in Barcelona).Are you fluent in German and passionate about digital media? Join a global team in. Review and assess user-submitted video content.Ensure ...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Business Analyst (m / w / d) (90030)

Business Analyst (m / w / d) (90030)

MediaMarktSaturnWiesbaden, Hesse, Germany
Sie stellen eine hohe Warenverfgbarkeit in Abstimmung mit der Marktgeschftsfhrung sicher.Sie optimieren laufend die Lagerbestnde und gewhrleisten dass das Lager den vorgegebenen Anforderungen entsp...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
  • Gesponsert
Junior Business Analyst (m / w / d)

Junior Business Analyst (m / w / d)

REDNET GmbHMainz, Deutschland
Unternehmen in der IT-Ausstattung öffentlicher Auftraggeber – darunter Schulen, Universitäten, Behörden und das Gesundheitswesen – und wurde kürzlich als bester IT-Dienstleister 2024 ausgezeichnet....Mehr anzeigenZuletzt aktualisiert: vor 10 Tagen
Senior Financial Analyst (m / w / d)

Senior Financial Analyst (m / w / d)

Morgan Philips Executive SearchWiesbaden, Hessen, DE
Quick Apply
Wenn Sie Fragen haben, wenden Sie sich bitte an Ihren MPPR-Ansprechpartner.Kontakt Fabian Petereit Associate Business Director Finance - Financial Service - Tax - Legal +49 151 231 656 32 Fabian.Mehr anzeigenZuletzt aktualisiert: vor 28 Tagen
Online Data Analyst (m / w / d)

Online Data Analyst (m / w / d)

LOTTO Hessen GmbHWiesbaden, Hessen, Deutschland
Quick Apply
Rosenstraße 5-9, 65189 Wiesbaden, Deutschland.Für unsere Abteilung Online-Marketing suchen wir zum nächstmöglichen Zeitpunkt einen Online Data Analyst (m / w / d) in Vollzeit.Analyse des Kauf- und Nutz...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
(Software) Performance Analyst (m / w / d)

(Software) Performance Analyst (m / w / d)

SINC GmbHWiesbaden, Hessen, Deutschland
Quick Apply
Software) Performance Analyst (m / w / d) bei SINC GmbH | softgarden.Software) Performance Analyst (m / w / d).Du baust mit an unseren GovTech-Lösungen der nächsten Generation, die den Alltag von Millione...Mehr anzeigenZuletzt aktualisiert: vor 3 Tagen
Cyber Threat Intelligence Analyst (m / w / d)

Cyber Threat Intelligence Analyst (m / w / d)

SVAWiesbaden
Recherche zu aktuellen Bedrohungen, Angriffsvektoren, Threat Actors, Malware, Bedrohungslagen (Threat Landscape), Schwachstellen einzelner Unternehmen und Branchen. Recherche und Ableitung von Maßna...Mehr anzeigenZuletzt aktualisiert: vor 21 Tagen
Threat Detection Engineer (m / w / d)

Threat Detection Engineer (m / w / d)

Michael PageWiesbaden, Hessen, DE
Quick Apply
Intro Sie tragen aktiv zur digitalen Sicherheit von kritischen Finanzunternehmen bei seien Sie Cybergefahren immer einen Schritt voraus mit Threat Intelligence Firmenprofil Meine Kundin ist ein inn...Mehr anzeigenZuletzt aktualisiert: vor 20 Tagen
IT-Business Analyst (m / w / d)

IT-Business Analyst (m / w / d)

TIM AGWiesbaden, Hessen, Deutschland
Quick Apply
IT-Business Analyst (m / w / d) bei TIM AG | softgarden.Ein inhabergeführtes Mittelstands-Unternehmen mit Sitz in Wiesbaden und Standorten in Österreich und der Schweiz. Wir kaufen Data-Center-Technolog...Mehr anzeigenZuletzt aktualisiert: vor über 30 Tagen
Häufig gestellte Fragen
Diese Stelle ist in deinem Land nicht verfügbar.
Cyber Incident Handling Analyst

Cyber Incident Handling Analyst

SOSiWiesbaden, Germany
Vor 30+ Tagen
Stellenbeschreibung

Overview

SOSi is seeking a Cyber Incident Handling Analyst to support our customer in Wiesbaden, Germany . The Cyber Incident Handler will perform analytic analysis of cyber related events to detect and deter malicious actors using SIEM technologies, which correlate multiple security tool alerts and logs.

Essential Job Duties

  • Work as a member of the Cyber Incident Response Operations Team to increase the security posture of the customers' network.
  • Monitor SIEM platforms for alerts, events, and rules providing insight into malicious activities and / or security posture violations.
  • Review intrusion detection system alerts for anomalies that may pose a threat to the customers' network.
  • Identify and investigate vulnerabilities, asses exploit potential and suggest analytics for automation in the SIEM engines.
  • Report events through the incident handling process of creating incident tickets for deeper analysis and triage activities.
  • Coordinates and distributes directives, vulnerability, and threat advisories to identified consumers.
  • Issue triage steps to local touch labor organizations and Army units to mitigate or collect on-site data.
  • Perform post intrusion analysis to determine shortfalls in the incident detection methods.
  • Develop unique queries and rules in the SIEM platforms to further detection for first line cyber defenders.
  • Monitor the status of the intrusion detection system for proper alert reporting and system status.
  • Respond to the higher headquarters on incidents and daily reports.
  • Provide daily updates to Defensive Cyber Operations staff on intrusion detection operation and trends of events causing incidents.
  • Prepare charts and diagrams to assist in metrics analysis and problem evaluation and submit recommendations for data mining and analytical solutions.
  • Draft reports of vulnerabilities to increase customer situational awareness and improve the customers cyber security posture.
  • Assist all sections of the Defensive Cyber Operations team as required in performing Analysis and other duties as assigned.
  • May perform documentation and vetting of identified vulnerabilities for operational use.
  • May prepare and presents technical reports and briefings.
  • Utilize a solid understanding of networking ports and protocols, their uses, and their potential misuses.

Minimum Requirements

  • An active in scope Top Secret / SCI clearance is required.
  • Bachelor in related discipline +3, AS +7, major certification +7 or 11+ years specialized experience.
  • Must meet DoD 8140 DCWF 531 requirements (B.S., A-150-1980, A-150-1202, A-150-1203, A150-1250, WSS 011, WSS 012GCFA, CBROPS, FITSP-O, GISF, CCSP, CEH, Cloud+, GCED, PenTest+, Security+, or GSEC ).
  • Must meet DoD 8140 DCWF 511 requirements (B.S., M03385G; M10395B; M22385, A-150-1980, A-150-1202, A-150-1203, A-150-1250, A-531-0451, A-531-4421, A-531-1900, WSS 011, DISA-US1377, GFACT, GISF, Cloud+, GCED, PenTest+, Security+, or GSEC ).
  • Must have one of the following certifications ( Cisco CyberOps Professional, GCED, GCFA, GCFE, GCIH, GNFA, DCITA CIRC, FIWE or Offensive Security OSDA).
  • Must have a full, complete, and in-depth understanding of all aspects of Defensive Cyber Operations.
  • Must have a good breadth of knowledge of common ports and protocols of system and network services.
  • Experience in packet captures and analyzing a network packet.
  • Experience with intrusion detection systems such as Snort, Suricata, and / or Zeek.
  • Experience with SIEM systems such as Splunk and / or ArcSight.
  • Must have the demonstrated ability to communicate with a variety of stakeholders in a variety of formats.
  • Must be able to obtain certification as a Technical Expert by the German Government under the Technical Expert Status Accreditation (TESA) process.

    • Preferred Qualifications

  • Bachelors degree in Engineering, Computer Science, or Mathematics.
  • Experience with writing Snort or Suricata IDS rules.
  • Experience with writing complex Splunk SPL queries to correlate lookup tables with event logs to identify anomalies.
  • Experience with analyzing packets using Arkime or Wireshark.
  • Experience with Microsoft Windows event IDs.
  • Experience with Linux audit log analysis.
  • Familiarity with Git and VScode.
  • Experience with one or more scripting languages such as PowerShell, Bash, Python.

    • Work Environment

  • Normal office conditions.
  • Potential to work on multiple shifts in a rotation schedule covering a 24 / 7 / 365 mission.
  • On site in Wiesbaden, Germany.

    • Working at SOSi

    All interested individuals will receive consideration and will not be discriminated against for any reason.

  • An active in scope Top Secret / SCI clearance is required.
  • Bachelor in related discipline +3, AS +7, major certification +7 or 11+ years specialized experience.
  • Must meet DoD 8140 DCWF 531 requirements (B.S., A-150-1980, A-150-1202, A-150-1203, A150-1250, WSS 011, WSS 012GCFA, CBROPS, FITSP-O, GISF, CCSP, CEH, Cloud+, GCED, PenTest+, Security+, or GSEC ).
  • Must meet DoD 8140 DCWF 511 requirements (B.S., M03385G; M10395B; M22385, A-150-1980, A-150-1202, A-150-1203, A-150-1250, A-531-0451, A-531-4421, A-531-1900, WSS 011, DISA-US1377, GFACT, GISF, Cloud+, GCED, PenTest+, Security+, or GSEC ).
  • Must have one of the following certifications ( Cisco CyberOps Professional, GCED, GCFA, GCFE, GCIH, GNFA, DCITA CIRC, FIWE or Offensive Security OSDA).
  • Must have a full, complete, and in-depth understanding of all aspects of Defensive Cyber Operations.
  • Must have a good breadth of knowledge of common ports and protocols of system and network services.
  • Experience in packet captures and analyzing a network packet.
  • Experience with intrusion detection systems such as Snort, Suricata, and / or Zeek.
  • Experience with SIEM systems such as Splunk and / or ArcSight.
  • Must have the demonstrated ability to communicate with a variety of stakeholders in a variety of formats.
  • Must be able to obtain certification as a Technical Expert by the German Government under the Technical Expert Status Accreditation (TESA) process.
  • Work as a member of the Cyber Incident Response Operations Team to increase the security posture of the customers' network.
  • Monitor SIEM platforms for alerts, events, and rules providing insight into malicious activities and / or security posture violations.
  • Review intrusion detection system alerts for anomalies that may pose a threat to the customers' network.
  • Identify and investigate vulnerabilities, asses exploit potential and suggest analytics for automation in the SIEM engines.
  • Report events through the incident handling process of creating incident tickets for deeper analysis and triage activities.
  • Coordinates and distributes directives, vulnerability, and threat advisories to identified consumers.
  • Issue triage steps to local touch labor organizations and Army units to mitigate or collect on-site data.
  • Perform post intrusion analysis to determine shortfalls in the incident detection methods.
  • Develop unique queries and rules in the SIEM platforms to further detection for first line cyber defenders.
  • Monitor the status of the intrusion detection system for proper alert reporting and system status.
  • Respond to the higher headquarters on incidents and daily reports.
  • Provide daily updates to Defensive Cyber Operations staff on intrusion detection operation and trends of events causing incidents.
  • Prepare charts and diagrams to assist in metrics analysis and problem evaluation and submit recommendations for data mining and analytical solutions.
  • Draft reports of vulnerabilities to increase customer situational awareness and improve the customers cyber security posture.
  • Assist all sections of the Defensive Cyber Operations team as required in performing Analysis and other duties as assigned.
  • May perform documentation and vetting of identified vulnerabilities for operational use.
  • May prepare and presents technical reports and briefings.
  • Utilize a solid understanding of networking ports and protocols, their uses, and their potential misuses.