Our client is an innovative service provider specializing in supporting organizations through their digital transformation. Focused on modern technologies and cloud-based solutions, the company offers tailored software development and IT infrastructure solutions. They specialize in optimizing processes and implementing sustainable, future-proof solutions. The primary focus is on cloud technologies, especially in the Microsoft Azure environment, and automating and improving IT workflows.

Your Responsibilities:

• Incident Analysis: Investigate and respond to security incidents by analyzing reports and event logs.
• Security Coordination: Collaborate with the SOC provider to assess and contain incidents, working with IT teams for resolution.
• Process Improvement: Contribute to the optimization of incident response processes.
• Automation: Develop and implement automation solutions to enhance incident response efficiency.

Technical Skills & Tools:

• SIEM: Splunk, ArcSight, IBM QRadar, Elastic Security
• EDR: CrowdStrike, Carbon Black, Microsoft Defender
• Forensics: EnCase, FTK, Volatility
• Vulnerability Management: Nessus, Qualys, Rapid7 Nexpose
• Network Monitoring: Wireshark, Zeek, NetFlow
• Automation & SOAR: Palo Alto Cortex XSOAR, Splunk Phantom, IBM Resilient
• Programming/Scripting: Python, PowerShell, Bash

Your Profile:

• Education: Degree in IT, Cybersecurity, or equivalent.
• Cybersecurity Experience: Strong understanding of cyber threats and incident response frameworks.
• Incident & Log Analysis: Experience in analyzing and classifying security incidents.
• Vulnerability & Risk Management: Knowledge in assessing and mitigating vulnerabilities.
• Automation Skills: Ability to develop automation scripts and playbooks.
• Communication: Clear documentation and effective communication of technical information.

What Our Client Offers:

• Flexible Work Hours: Position available across Germany with part-time options.
• Career Development: Training and certifications in cybersecurity.
• Teamwork & Innovation: Collaborative environment with opportunities to improve security infrastructure.