Our client is an innovative service provider specializing in supporting organizations through their digital transformation. Focused on modern technologies and cloud-based solutions, the company offers tailored software development and IT infrastructure solutions. They specialize in optimizing processes and implementing sustainable, future-proof solutions. The primary focus is on cloud technologies, especially in the Microsoft Azure environment, and automating and improving IT workflows.
Your Responsibilities :
- Incident Analysis : Investigate and respond to security incidents by analyzing reports and event logs.
- Security Coordination : Collaborate with the SOC provider to assess and contain incidents, working with IT teams for resolution.
- Process Improvement : Contribute to the optimization of incident response processes.
- Automation : Develop and implement automation solutions to enhance incident response efficiency.
Technical Skills & Tools :
SIEM : Splunk, ArcSight, IBM QRadar, Elastic SecurityEDR : CrowdStrike, Carbon Black, Microsoft DefenderForensics : EnCase, FTK, VolatilityVulnerability Management : Nessus, Qualys, Rapid7 NexposeNetwork Monitoring : Wireshark, Zeek, NetFlowAutomation & SOAR : Palo Alto Cortex XSOAR, Splunk Phantom, IBM ResilientProgramming / Scripting : Python, PowerShell, BashYour Profile :
Education : Degree in IT, Cybersecurity, or equivalent.Cybersecurity Experience : Strong understanding of cyber threats and incident response frameworks.Incident & Log Analysis : Experience in analyzing and classifying security incidents.Vulnerability & Risk Management : Knowledge in assessing and mitigating vulnerabilities.Automation Skills : Ability to develop automation scripts and playbooks.Communication : Clear documentation and effective communication of technical information.What Our Client Offers :
Flexible Work Hours : Position available across Germany with part-time options.Career Development : Training and certifications in cybersecurity.Teamwork & Innovation : Collaborative environment with opportunities to improve security infrastructure.