thyssenkrupp AG | Germany | 45xxx Essen | Permanent position | Full time / Home office | Published since: 08.05.2026 on stepstone.de
Threat Intelligence Specialist – CTI Platforms & Automation (m/f/d)
thyssenkrupp is an internationally established industrial and technology group with more than 93,000 employees. In 48 countries, the company generated sales of around 33 billion in the 2024/2025 financial year. €. The business activities are bundled in five segments: Automotive Technology, Decarbon Technologies, Materials Services, Steel Europe and Marine Systems. With comprehensive technology know-how, strong engineering competence and high innovative strength, the Group develops solutions for the challenges of the future as a technology leader in many of its markets. Around 3,900 employees work in the fields of research and development worldwide. They focus on climate protection and energy transition, the digital transformation in industry and the mobility of the future. thyssenkrupp's patent portfolio currently comprises approximately 17,000 patents and utility models, thus underlining the Group's leading technology and innovation position. thyssenkrupp pursues ambitious climate protection goals and actively optimizes its own energy and climate efficiency. At the same time, the Group supports its customers and industrial partners in achieving their climate targets and thus makes them decisively active in the green transformation. As a listed company thyssenkrupp is listed in the MDAX. The thyssenkrupp shares are traded on the Frankfurt Stock Exchange (Turkey: TKA) and as American Depositary Receipts (Turkey: TKAMY) in the USA. Since 20 October 2025, TKMS (Segment Marine Systems) has also been an independent, listed company, in which thyssenkrupp AG holds a majority stake of 51 percent; the TKMS shares are traded on the Frankfurt Stock Exchange (Turkey: TKMS) and from 22. December 2025 in the MDAX. As a Threat Intelligence Specialist, you are part of our Cyber Defense Center (CDC) and work on the further development and automation of our Threat Intelligence platforms and processes. You connect analytical Threat Intelligence with technical implementation and integration, making a direct contribution to the detection and defence of cyber threats. .
* After clicking the Read more button, the original advert will open on our partner's website, where you can see the details of this vacancy and contact information. If you need a translation of this text, after returning to our website it will be prepared and you can read it by clicking the Show full translation button.
Your tasks • Your profile • What we offer
Analysis and processing of information for identifying threats (e.g. IOCs, TTPs, Threat Actors, Vulnerabilities) Operation, maintenance and further development of our Threat Intelligence and Malware Analysis Infrastructure Integration of systems and data sources via APIs and development of middleware (e.g. with Python or Go) Automation of processes to improve detection and analytical skills Preparation and presentation of analyses and documentation and further development of processes and guides Continuous Evaluation of New Technologies, Tools and Best Practices in Threat Intelligence Support for Incident Response activities in close cooperation with our CERT
Complete study of computer science, IT security or a comparable qualification Practical experience in Cyber Threat Intelligence, SOC, Detection Engineering or a comparable environment Experience with at least one Threat Intelligence Platform (e.g. MISP, OpenCTI, AssemblyLine or comparable) Knowledge of integration and operation of security tools at application level Good programming knowledge (e.g. Python, optional Go) and experience with API-based integration Understanding technical processes and automation, availability and secure system architectures Experience in dealing with security technologies such as SIEM, SOAR or EDR Structured, self-responsive operation and pronounced analytical thinking Very good knowledge of German and English in word and writing Willingness to participate in a readiness to call
Exciting tasks at the interface of Threat Intelligence, Automation and Detection Design space in the further development of our CTI landscape Cooperation with experienced security experts in the CDC/CERT environment Attractive social benefits, e.g. B. excellent occupational retirement provision A package of free, professional services as well as an extensive range of training, e.g. via the thyssenkrupp Academy or established IT security training providers Regular health care through our occupational medical service / Medical Center, including skin cancer screening, influenza protection vaccination and COVID-19 antigen quick tests and vaccinations Very good further development possibilities – in the team, in the company and within the group of companies A steep learning curve through diverse topics as well as the use of modern technologies and tools in a dynamic team with flat hierarchies Modern and ergonomic workplaces, flexible working hours and the possibility of mobile work Collaborative cooperation and a respectful approach to each other – this has been ours for over 200 years. If that's just as important to you as we do, you're gonna get involved.
We value diversity
We value diversity and therefore welcome all applications – regardless of gender, nationality, ethnic and social origin, religion/worldview, disability, age as well as sexual orientation and identity. .
Location
 | thyssenkrupp AG | |
| 45143 Essen | ||
| Germany |
The text of this ad was translated from German into English using an automatic translation system and may contain semantic and lexical errors. Therefore, it should be used for introductory purposes only. For more detailed information, see the original text of the ad at the link below.
For more information read the original ad