Senior Detection/Automation Engineer – Security DC (f/m/d) @ A1 Competence Delivery Center

What you do
Manage conception, research and development of detection of use-cases within the existing SIEM-System.
Be responsible for proper testing, documentation follow up, and initiating continuous improvement of automation playbooks in SOAR.
Be aware of specific logging requirements, develop logging concepts and rulesets (Sysmon, Auditd, …).
Take part in designing attack-detection system, together with responsible teams.
Grasp the technical detail, as well as the strategic thinking necessary for driving technology-based business transformation.
Act as a resourceful problem solver, experienced in networking and collaborating within the organization.
Develop reports, dashboards and security relevant content.

What you offer
BSc or MSc in Information Security, Computer Science, Engineering, or similar relevant security certifications.
Knowledge in state-of-the-art IT cybersecurity architectures, hardware, and software implementations for large organizations, using either enterprise based and/or cloud-based environments.
Advanced experience in programming with Python or similar program languages.
Vast knowledge of Splunk and security specific frameworks (e.g. Mitre).
Knowledge of cloud services (technically and functionally), especially M365 and MS Azure & -Security Modules, is a plus.
Experience with various forensics and security tools, as well as evaluation of log files for the analysis of attacker behavior, is a plus.
Interest in identifying cybersecurity gaps in IT network and systems designs or implementations, and in recommending mitigation strategies to address the identified gaps.
Strong analytical and problem-solving skills with the capability to identify solutions to unusual and complex problems.
Fluency in English language.