You will play an active role in ensuring the smooth operation and continuous development of our Security Operations Center (SOC). In this role, you will monitor and analyze preventive, detective, and reactive technologies to ensure our IT security.
You will actively participate in the further development of the SOC, utilizing technologies such as Elastic (Elastic Defend, Elastic SIEM) and Microsoft (Defender for Endpoint and Azure Sentinel).
As a member of our SOC team, you will analyze security-critical events and initiate appropriate steps as part of triage, investigation, and response.
You will support the offensive security team in testing and improving technologies and processes within the Purple Team engagement.
The definition, integration, and continuous optimization of new analytics and detections also fall within your area of responsibility.
You will actively participate in vulnerability assessments and take part in remediation processes to address identified vulnerabilities.
You will systematically manage security incidents based on the PICERL approach and coordinate measures for effective incident response.
Regular knowledge sharing within the team and the integration of current developments are second nature to you.
You have proven experience in detecting, analyzing, and mitigating cyberattacks.
Your mindset is driven by a desire to analyze and understand attackers and their TTPs.
You are familiar with MITRE ATT@CK and can effectively apply its concepts and frameworks.
You independently handle complex tasks while demonstrating a strong team-oriented approach, as you enjoy working in a collaborative environment.
You feel most comfortable working within the organization and prefer a role with minimal travel.
You reliably support Possehl Secure clients and consultants and understand the importance of a client-oriented approach.
Within service contracts, you are willing to take on on-call duties as part of a team to respond flexibly to security requirements.
