Incident Responder (m/f/d)

Analysis and Processing of Safety-relevant Incidents incl. Root-Cause Analysis and Impact Assessment Coordination of incidents and advice on appropriate countermeasures and remediation strategies for customers Threat Hunting in various IT and cloud environments (regular and ad‐hoc) to identify hidden threats Forensic investigations in Windows, Linux, and Cloud infrastructures and support in chain-of-custody processes Tracking attacker activities across different log sources, systems and platforms Work in SIEM, XSOAR, EDR and NIDS environments for efficient incident processing and detection optimization Conducting customer workshops to strengthen cyber resilience and security readiness Participation in the 24/7 readiness to support in critical security incidents

Very good knowledge of modern IT infrastructures (Windows, Linux, Azure, AD) and relevant forums Experience with common incident scenarios such as BEC, system compromises, ransomware and domain compromises Deep understanding of log sources, SIEM analyses and attack behavior in various environments Competence in at least two special areas (e.g. Cloud-Forensics, macOS‐IR, Mobile Forensics, Malware Analysis, Threat Intelligence) Strong ability to evaluate complex data and identify security-relevant patterns Structured and clear documentation and precise risk assessment even with limited data Professional communication - technical and management - also under time pressure High resilience, fast conception and a proactive, solution-oriented working style Safe handling of different EDR tools and manufacturer variants

Flexible working hours and mobile office in coordination with the supervisor Discounts thanks to the “Corporate Benefits” portal Bike leasing Free drinks & fruit Further training Employee events