Amprion GmbH | Germany | 50xxx Pulheim bei Köln | Permanent position | Full time | Published since: 01.10.2025 on stepstone.de
SOC Security Engineer (m/w/d)
Amprion connects. Our transmission network transports electricity for 29 million people in an area from the North Sea to the Alps. A third of the German economic output is generated there. Our lines are lifelines of society. We keep our net stable and safe - and prepare the way for the energy transition: We build our network and work on new ideas for a climate-friendly, safe and efficient energy system. JOBV1_EN
* After clicking the Read more button, the original advert will open on our partner's website, where you can see the details of this vacancy and contact information. If you need a translation of this text, after returning to our website it will be prepared and you can read it by clicking the Show full translation button.
Your tasks • Your profile • What we offer
Amprion connects. Our transmission network transports electricity for 29 million people in an area from the North Sea to the Alps. A third of the German economic output is generated there. Our lines are lifelines of society. We keep our net stable and safe - and prepare the way for the energy transition: We build our network and work on new ideas for a climate-friendly, safe and efficient energy system.
At the Pulheim site, IT/OT systems are monitored by a SOC. This includes the permanent monitoring of current systems as well as the analysis and processing of disturbances. The Security Engineer hereby manages the security applications necessary for the operation of the SOC and the provision of its services. The focus is on the development of the SIEM environment and the support for the integration of the systems to be monitored.
Administrative support of the security applications of the SOC: SIEM environment: Cribl, Splunk incl. Extensions IDS in the OT environment: Nozomi MISP platform
Forwarder Management and Onboarding and Parsing of Log Sources Implementation and Tuning of Detection-Rules Development of dashboards and reports Automation of processes for detection, analysis and defence Connection of Cyber Threat Intelligence Sources
IHR PROFIL: a completed computer science study or comparable qualification desirable 2-3 years of professional experience in the above mentioned field of activity ideally experience or certification in the following areas: Administration of Splunk Enterprise incl. popular extensions Log Onboarding with Cribl Stream Security Applications (IDS, MISP) Security Certification (CCNA Security, Splunk Enterprise Certified Admin)
Experiences in the network environment and understanding of attack methods against applications, systems and networks very good knowledge of German and English in word and writing Reliability and problem-solving competence, as well as a good communication capability and independent, responsible operation Ready to call service
.
flexible work 38 hours a week 30 days Development Family & profession Sports & Health Christmas money Amprion harvest JOBV1_EN
Company location
Contact
| Amprion GmbH | |
| 50259 Pulheim bei Köln | ||
| Germany | ||
| show e-mail |
The text of this ad was translated from German into English using an automatic translation system and may contain semantic and lexical errors. Therefore, it should be used for introductory purposes only. For more detailed information, see the original text of the ad at the link below.
For more information read the original ad