Security Operations Engineer (SIEM/SOC) (m/f/d)

You want to unfold your talents, prove your strengths, introduce your ideas? As a leading European provider of financial and preventive solutions, we support people with passion for financial care – a lifetime. The know-how and passion of our employees are the basis of our successes. Therefore, we also support and support you individually and according to your needs in both your personal and professional development. Looking for a career with a future? Welcome to Swiss Life! In the Team Security & Network we ensure the holistic security of our IT systems and networks. Our central tasks include continuous monitoring, configuration and securing of complex IT infrastructures. We implement and operate modern security protocols, implement powerful cyber security software and ensure consistent compliance with internal and regulatory guidelines. In addition, we identify potential vulnerabilities at an early stage, assess risks and accompany measures to remedy them. We work closely together in the team and with adjacent specialist areas and continuously develop our security architecture – responsibly, forward-looking and sustainable.

Operation, monitoring and continuous development of the management services of the SIEM and SOC platform

Analysis, evaluation, processing and documentation of safety incidents (Incident Response)

Development, maintenance and optimization of use cases, alarms and correlations

Continuous monitoring of systems, networks and applications for early detection of security events

Implementation, coordination and tracking of vulnerability management including scans and reviews

Analysis of identified vulnerabilities, derivation of risk assessments and accompanying mitigation and curing measures

Support forensic analyses, further development of security standards, guidelines and security concepts as well as close cooperation with internal departments and external service providers

Complete study of computer science, IT security or a comparable qualification

3 - 5 years of practical experience in the environment of SIEM/SOC and IT security

Finded knowledge of vulnerability management and the use of popular scanning tools

Experience with established SIEM solutions (e.g. Splunk, QRadar, Microsoft Sentinel, Rapid7)

Very good understanding of network technologies, operating systems and relevant security protocols

Extensive know-how in cloud environments, in particular AWS (EC2, Lambda, CloudWatch, SQS) and experience in scripting (Ruby, Bash, PowerShell)

Analytical, structured and responsible way of working, high quality and safety awareness, strong team and communication skills as well as excellent knowledge of German and good English

Due to our flat hierarchies, you can make a direct contribution to the success of the company

Our flexible working hours including mobile work ensure a work-life balance

You can also choose from a variety of variants of occupational retirement provision

You will be promoted individually in your strengths – with training and career opportunities adapted to you

The following special services and benefits are also available to you: restaurant

Services

German public transport ticket

Opportunities for childcare

You can participate in our extensive ranges and actions as part of our health management

In addition, we offer various possibilities of a sabbatical