Detection Engineer (m/f/d)

The Schwarz IT supports the entire digital infrastructure and all software solutions of the companies of the Schwarz Group. It is therefore responsible for selecting, providing and operating as well as further developing IT infrastructures, IT platforms and business applications. In order to optimally support the departments through IT solutions in their business processes, the Schwarz IT takes up the requirements of the departments in consultations and works together with these professional and efficient IT solutions.

Be part of our hybrid team at the BERLIN or NECKARSULM site

You are responsible for the further development and documentation of our use cases You help expand the view of the Cyber Defense Center on IT processes in the company with meaningful logging policies and detection rules You actively recognize gaps in our Detection Coverage and help to close it You review existing use cases on their sensuality and topicality You keep the general threat situation in mind and identify action recommendations Together with our Incident Responders, you develop steps to process alarms You may advise internal projects regarding safety issues

You have successfully completed a vocational training in the IT field (preferably with focus on security) with corresponding further training or a study of the computer science department You have knowledge of relevant standards and frameworks in the field of detection engineering such as MITRE ATT&CK and CIS You have experiences in developing efficient searches and alerts in SPL (Splunk Search Processing Language) You are characterized by high analytical and communicative skills, you work independently and are team-capable You stand up convincingly and communicate safely in German and English