Cyber Security Engineers

The Senior Cyber Security Engineers are predominantly accountable for the detection and notification of security incidents to customers. As part of the Security Services team, this is a role that leverages your security expertise to identify, detect, and notify customers of security events ongoing within their environment. You will be expected to have a deep knowledge of various threats and forms of attack while having demonstrated experience in highly technical security roles. The successful candidate will focus on security investigations, security related task work, and improvement activities. This role will have a high technical aspect and limited customer relationship function, in that you will managing security incidents and working with other teams to provide the post-incident remediation activities. RESPONSIBILITIES

• Analyse incoming security events based on different data points; network, endpoint, and log sources consistently, and accurately
• Prioritise incoming events
• Run security incidents from detection to completion, communicating with internal and external parties throughout the process.
• Manage complex investigations within your area of expertise, and leverage your security knowledge to engage the other experts within other disciplines where required
• Prioritise task work according to understood and implied priorities
• Conduct quality reviews on outgoing tickets, security engagements, and seek areas of system improvement
• Contribute your security expertise using the development platform
• Ability to coach and mentor other team members to share knowledge and expertise

• 5+ years Industry experience; Information Security, Network Security, or Cyber Security roles

• 3+ years additionally as a Network Admin, System Admin, Cloud Admin, or similar is strongly preferred

• Deep technical competency in two (2) of the following o Networking - common protocols, server/client infrastructure, routers, switches, WAPs, etc o Perimeter - firewalls, IDS, IPS, UTM, WAF, Gateways, Proxys, Mail Servers, etc o Authentication - AD, SSO, MFA, etc o IaaS - cloud services, AWS, Azure, GCP o End Point - MDM, EDR, EPP, AV o SaaS - collaboration tools including O365, GSuite, Box, Salesforce, Workday, etc

• Ideally experience working in a Security Operation Center, security incident response teams, or in roles with security forensics or malware analysis disciplines.

• Analyse log and system data from the above list and other IT systems

• Know how to use one or more scripting tools and languages such as Python, Bash, and Power Shell

• Great writing and speaking skills in German and English

• A positive "can-do" attitude

• A willingness to learn and continuous self-improvement

• There are no specific degree or certification requirements but degrees in engineering or technology are a plus. Any security or IT certification such as CISSP is also positive. Additional skills and experience:

• Any security certifications, professional CISSP, SANS certifications, or technical certifications such as AWS or Cisco are viewed favorably

• Security forensics

• Malware analysis

• E-discovery

• Threat containment

• Firewall and IDS provisioning

• Proxy and content filtering provisioning

• Authentication and identify management

• Risk and vulnerability Assessment

• Network and security Auditing

• Network troubleshooting

• Penetration testing

• Attack simulation

• PowerPoint presentation skills