Security Operation Analyst

What makes us special:

■ Team-oriented corporate culture, collaboration as equals and steady knowledge transfer

■ Diversity & Inclusion (e.g., various initiatives & communities)

■ Flexible working hours – depends on team and department

■ Inhouse Academy with a variety of professional technical training, soft skills training, SAP Learning Hub, and certification opportunities

■ Company health benefits (e.g. Medical Insurance for family member, Health Insurance, Optical and Dental Benefits, parking)

Do you love challenges?

We are looking for a dedicated and proactive Security Operations Analyst to join our Global IT Security Operations team. As a SOC Analyst, you will be the frontline defender of our IT infrastructure, responsible for monitoring, detecting, and responding to potential security threats in real time. You will work in rotating shifts to provide 24/7 coverage, ensuring that incidents are identified and resolved quickly and efficiently. This role is crucial to maintaining the security and resilience of our organization’s global IT systems.

Key Responsibilities:

• Monitor Security Alerts: Continuously monitor XDR/SIEM (Security Information and Event Management) systems, IDS/IPS, and other security tools to identify potential security incidents or abnormal activity.
• Incident Response: Investigate and respond to security incidents, following defined incident response protocols, and escalating issues to senior analysts or management as needed.
• Threat Detection and Analysis: Conduct in-depth analysis of security threats such as malware, intrusion attempts, and unauthorized access, and correlate events to identify patterns or potential breaches.
• Log Analysis: Perform detailed analysis of logs from various security devices and endpoints to detect suspicious activities and vulnerabilities.
• Documentation and Reporting: Document security incidents, root cause analysis, and the steps taken to resolve them. Provide regular reports on security incidents and SOC activities to the management team.
• Proactive Monitoring: Stay updated on the latest security trends, vulnerabilities, and exploits. Ensure that alerts and monitoring systems are fine-tuned to address emerging threats.
• Collaboration: Work closely with other IT teams, security teams, and business units to investigate security issues and implement appropriate responses.
• Shift Work: Provide 24/7 support by working in rotating shifts, ensuring continuous monitoring of security systems and timely response to incidents.

Convince us with your potential!

• Bachelor’s degree in information security, Computer Science, or a related field, or equivalent work experience.
• 1-3 years of experience in a SOC or a similar role focused on security monitoring and incident response.
• Familiarity with /XDR/SIEM platforms (e.g., Trend Micro, Splunk, ProofPoint, Defender) and security tools such as IDS/IPS, firewalls and endpoint protection systems.Understanding of network and security protocols (TCP/IP, DNS, HTTP/S, SSL, etc.).
• Experience with incident response frameworks and methodologies.
• Knowledge of common attack vectors such as phishing, malware, and lateral movement within networks.
• Certifications such as CompTIA Security+, CySA+ are preferred but not mandatory.
• Ability to work effectively in a shift-based environment with strong time management and multitasking skills.
• Strong analytical and problem-solving skills.
• Excellent communication skills, both written and verbal.

Key Competencies:

• Analytical Thinking: Ability to analyze and assess large volumes of security data and logs to detect potential threats.
• Problem-Solving: Capability to respond quickly to incidents and devise solutions to resolve security issues.
• Collaboration: Works well in a team environment, especially under high-pressure situations during security incidents.
• Adaptability: Willingness to work in rotating shifts and adapt to the evolving threat landscape.
• Attention to Detail: Able to identify subtle anomalies and patterns that could indicate potential security threats.