SOC Engineer

Sr SOC Engineer
Aschaffenburg, Berlin, Dusseldorf, Aachen (Hybrid, whichever location is closest)
Full-time

About Us
We are a leading technology company dedicated to developing innovative software solutions that optimize the flow of energy and materials across utilities and industries. With a strong heritage of technology leadership, our solutions combine advanced AI methods with proven industrial optimization techniques. Our products are designed to drive sustainable energy supply, mobility, and production — available both on-premises and in the cloud.

Your Responsibilities

• Detect, investigate, and respond to security incidents across the organization.
• Conduct proactive threat hunting activities leveraging threat intelligence.
• Implement, monitor, and maintain security measures to protect corporate and production infrastructure.
• Utilize log ingestion and analysis platforms to identify attacker tactics, techniques, and procedures (TTPs).
• Develop and maintain security runbooks and playbooks.
• Manage and fine-tune Endpoint Detection and Response (EDR) solutions and security policies.
• Produce, refine, and maintain security detection rules and alerts.
• Participate in the on-call rotation for the Security Incident Response Team (SIRT).
• Perform digital forensics and incident response (DFIR) activities.
• Identify, assess, and mitigate complex security vulnerabilities proactively.
• Conduct root cause analyses (RCA) and lead incident review sessions.
• Research, design, and implement new security technologies within security operations.
• Effectively communicate complex technical information to both technical and non-technical stakeholders, including senior leadership and customers.

Your Profile

• Solid experience with log analysis platforms and Security Information and Event Management (SIEM) tools.
• Familiarity with cloud platforms, particularly Google Cloud Platform (GCP), and identity services like Entra-ID.
• Strong background in operating system hardening, web application security, browser security, monitoring, and intrusion detection.
• Knowledge of secure network design, firewalls, authentication, and authorization systems.
• Experience in threat modeling and risk analysis.
• Hands-on experience in developing security tools and automating security operations.
• Deep understanding of cybersecurity threats, vulnerabilities, and mitigation techniques.
• Passion for cybersecurity and a strong commitment to continuous learning.
• Analytical thinker with a curious, inquisitive mindset and strong problem-solving abilities.
• Ability to quickly absorb complex topics and prioritize critical information.
• Clear and effective verbal and written communication skills.
• Proactive, collaborative, and comfortable working in a fast-paced, agile environment.