Sr SOC Engineer
Aschaffenburg, Berlin, Dusseldorf, Aachen (Hybrid, whichever location is closest)
Full-time
About Us
We are a leading technology company dedicated to developing innovative software solutions that optimize the flow of energy and materials across utilities and industries. With a strong heritage of technology leadership, our solutions combine advanced AI methods with proven industrial optimization techniques. Our products are designed to drive sustainable energy supply, mobility, and production — available both on-premises and in the cloud.
Your Responsibilities
- Detect, investigate, and respond to security incidents across the organization.
- Conduct proactive threat hunting activities leveraging threat intelligence.
- Implement, monitor, and maintain security measures to protect corporate and production infrastructure.
- Utilize log ingestion and analysis platforms to identify attacker tactics, techniques, and procedures (TTPs).
- Develop and maintain security runbooks and playbooks.
- Manage and fine-tune Endpoint Detection and Response (EDR) solutions and security policies.
- Produce, refine, and maintain security detection rules and alerts.
- Participate in the on-call rotation for the Security Incident Response Team (SIRT).
- Perform digital forensics and incident response (DFIR) activities.
- Identify, assess, and mitigate complex security vulnerabilities proactively.
- Conduct root cause analyses (RCA) and lead incident review sessions.
- Research, design, and implement new security technologies within security operations.
- Effectively communicate complex technical information to both technical and non-technical stakeholders, including senior leadership and customers.
Your Profile
- Solid experience with log analysis platforms and Security Information and Event Management (SIEM) tools.
- Familiarity with cloud platforms, particularly Google Cloud Platform (GCP), and identity services like Entra-ID.
- Strong background in operating system hardening, web application security, browser security, monitoring, and intrusion detection.
- Knowledge of secure network design, firewalls, authentication, and authorization systems.
- Experience in threat modeling and risk analysis.
- Hands-on experience in developing security tools and automating security operations.
- Deep understanding of cybersecurity threats, vulnerabilities, and mitigation techniques.
- Passion for cybersecurity and a strong commitment to continuous learning.
- Analytical thinker with a curious, inquisitive mindset and strong problem-solving abilities.
- Ability to quickly absorb complex topics and prioritize critical information.
- Clear and effective verbal and written communication skills.
- Proactive, collaborative, and comfortable working in a fast-paced, agile environment.
