Senior SIEM Engineer im Security Operations Center (SOC) (iv) (m/f/d)

The German Pension Insurance Federation is the largest German pension insurance company and thus a cornerstone of social security in Germany. We accompany people all their lives – from start of work to retirement age. 24.2 million insured persons, 10.8 million pensioners and 3.5 million employers rely on us. We maintain a highly complex and diverse IT system landscape. The methods and techniques used in this environment, including the hardware and software techniques used, offer an interesting and challenging working environment. For the Security Operations Center, we are looking for a*n Senior ITEM Engineer at Security Operations Center (SOC) (m/w/div) Location: Berlin or Würzburg Date of entry: Immediate Application deadline: 24.03.2026 Call number: 16-055-2025 Employment: Full time (part time is possible in principle) Remuneration: E12 TV EntgO-DRV Activity The Division 16 “Company Security” performs tasks of IT and physical security as a central service provider of the DRV Bund, the protection of personal data, the protection of privacy and emergency management as well as basic and cross-sectional tasks. The Security Operations Center (SOC) controls the operational IT security of the DRV Bund and other connected RV carriers. For this purpose, the SOC operates specialized systems for detecting vulnerabilities and attacks and for responding to IT security incidents for which it is the central point of contact. With the coordination and implementation of penetration tests, the SOC also performs preventive tasks. As part of the SOC, the security monitoring team takes care of the operation and configuration of the Security Incident Event Management System (SIEM) and is responsible for the development of automation, the onboarding of new data sources, as well as the development and maintenance of the use cases.

Analyze and optimize existing systems and instruments Planning, controlling, configuring and evaluating security monitoring Use Case Design, Implement and Consider Lifecycles Onboarding new data sources and securing the data quality of existing sources Participation in designing, performing and further developing the safety monitoring and SOC processes Support in the introduction and change of platform technologies, such as the implementation of PoCs and the integration of SOC systems with other systems (e.g. ticketing systems, log sources) via APIs and other interfaces Create and maintain documentation on systems, configurations and processes

A completed university education (Bachelor, Diploma) in the IT sector or an equivalent qualification, for example due to an IT-specific qualification or completed vocational training in the IT sector with corresponding task-relevant experience Multiannual practical professional experience in setting up one or more security platforms (e.g. SIEM, vulnerability scanner, EDR, SOAR, et cetera) Experiences in the areas of data center infrastructure, operating systems (Linux/Windows), container environments and network protocols Willingness to take over reputation as well as occasional service trips (inland) and further trainings/ events also outside the locations Berlin and Würzburg The activity requires knowledge of German in word and writing A pronounced analytical capacity, coordination skills a self-responsible self-organisation, problem-solving competence and communication strength complete your profile

An interesting and varied activity with all the advantages of a large public employer A friendly, open and motivated team from Security Engineers and a structured and individual integration into your new area of responsibility A wide range of versatile and challenging tasks ranging from classic system administration to software development and extensive further and further training opportunities Family-friendly, flexible and service-oriented working time models supplement our services and cooperation partners for the reconciliation of work and family (for parents and nursing relatives) The health of our employees is important to us. We support the practical implementation of occupational health management in everyday work 30 Holiday days at 5-day week Home Office Indefinite body Responsibility Further information To occupy the position, we will have discussions with applicants who are in the narrower selection. Please note that you will be checked according to a security check law (§ 9 SÜG). This safety review may not have the result that there is a safety risk that is contrary to the safety-sensitive activity (§ 14 SÜG). These tasks require the willingness to participate in the willingness to call in the team and in urgent cases also to work outside regulated working hours (for example on weekends). In order to enable employees with family obligations to participate in business trips or professionally offered training, the DRV Bund will refund additional, necessary and unusable care costs. This job description refers to an area in which women are underrepresented within the meaning of the Federal Employment Act. The German Pension Insurance Federation has set itself the goal of promoting women. We therefore look forward to receiving applications from women with particular interest. Persons with a severe disability or persons with equal status within the meaning of § 2 para. 2 and 3 SGB IX are preferably taken into account with the same suitability.

We welcome applications from people of all nationalities. .