(Senior) SOC Analyst / (Senior) Cybersecurity Analyst (m/f/d)

Full time Data Science Data Analytics Statistics Cybersecurity

Job Description

Description of the post:

You are part of our rapidly growing "Defence & Intelligence" division at the Cologne location. In addition to many large companies from the Rhine-Ruhr area, the customer base also includes public clients and customers from the defence sector.
This gives you the opportunity to work in different teams and constellations. You can apply and deepen your knowledge and skills and continuously learn new things.
Bring in your own ideas and shape your career!
Is the cybersecurity of companies, organisations and states important to you?
Are you enthusiastic about securing IT landscapes against a constantly changing threat situation? Is your 32 screen at home slowly becoming too small for you anyway?
As a (Senior) SOC Analyst or (Senior) Cybersecurity Analyst (m/f/d), you will work as part of our SOC teams to actively improve the operation of our SOC services. You will help our customers to protect their IT infrastructure against threats from inside and outside and, if in doubt, you will be able to react to security incidents within the shortest possible time.
As part of our L2/L3 team, you will further develop both the system and the services, but you will also act as an expert for extended incident response in direct contact with our customers' operations teams and decision-makers. Your expertise will help to identify attacks and avert damage to those affected.

Functions and responsibilities:

Implementation, maintenance and operation of the various SOC components (SIEM, CTI, IRP, etc.)
Evaluating and handling verified incidents in collaboration with the responsible operations teams and customer managers
Working directly with the tools for analyzing and handling a wide variety of security incidents
Designing, developing and updating runbooks for Level 1 & 2 operations
Identifying, designing, implementing and tuning SIEM use cases & alarm rules
Connecting new systems to the SIEM platform
Working in CERTs
Improving and expanding our SOC services
Conducting forensic analyses following an incident
Taking responsibility for the secure operation of our customers' IT infrastructure in exposed environments

Qualities requirements for Russian in the world:

You have solid experience in the areas of SOC / SIEM / Incident Response / Cybersecurity
You have an understanding and feel for the cyber threat situation and are familiar with MITRE or comparable frameworks
You are familiar with SIEM, IRP, CTI systems
You are able to carefully follow and implement structured processes and reporting chains
You are able to analyze incidents in a structured manner, recognize attack patterns and vectors and also develop solutions for dealing with new incidents
You can basically imagine taking on on-call duties
You speak and write fluent German and English
WHAT WE OFFER
With us you will find colleagues who are fun to work with. We meet openly, use first names across all positions and do not think in hierarchies or silos.
Thanks to our Metro Market model, you can usually work where you live.
You benefit from flexible working hours and, depending on the customer situation, have the option of working from home.
You can invest part of your gross salary in CGI shares - up to a maximum of 3% of your monthly salary, we add another euro for every euro.
We also give you a share in the company's success: you receive a share of the profits based on your individual performance and how we as a company have been able to achieve our financial goals.
We offer various models so that you can be mobile: e.g. Bahncard, company bike or company car.
Sabbaticals or parental leave are supported. They are not a career stopper with us!
We support you, even if things aren't going so well: you can take special leave and our advice hotline is there to help and advise you.
A variety of events and leisure activities strengthen your bond with your colleagues.
  • LI-VF1

Comptences:

  • German

This is what you can attend to:

Together, as owners, lets turn meaningful insights into action.
Founded in 1976 and still family-run, CGI is now one of the world's largest independent providers of IT and business consulting. A high degree of personal responsibility, teamwork, respect and solidarity make working with us special. With us, you can develop your full potential!
From day one, you can see yourself as a co-owner of CGI. Together, we make our vision a reality. We benefit from our shared success and have the opportunity and responsibility to actively shape the strategy and direction of our company.
Your work creates added value. You find innovative solutions and strengthen your network of colleagues and customers. At the same time, you have access to global resources to realize big ideas, seize new opportunities and benefit from immense industry and technology expertise.
You advance your career because you work in a company that is designed for growth and longevity. You will be supported by leaders who promote your health and happiness and offer you opportunities to deepen your skills and broaden your horizons.