Bauer Technology sets the strategy for the Bauer companies within the group, it co-ordinates major investments and technology change programmes, bringing the company on a journey from a highly federated set of autonomous and independent companies to an operation that maximises the opportunity of working at scale across the group – through knowledge sharing, collaboration and centres of excellence. Bauer Technology has a wide range of knowledge and experience from publishing, and printing, to radio broadcasting, and the full range of Enterprise IT systems and services and digital customer facing services.
Distributed across Europe, Bauer Technology has significant presence in Germany (headquarters), Poland and the United Kingdom. It is a highly matrix managed organisation, often having dual reporting lines to Group functions and business leadership structures within each territory.
The role holder will be part of the Bauer Cyber Defence Centre (CDC) Team. The CDC operates internal real-time cyber threat detection and response services for all Bauer entities in 14 countries across Europe, ensuring cyber-attacks are stopped before they can cause any damage. Additionally, the CDC continuously monitors Bauer's group wide attack surface to detect security risks and managing their mitigation.
Location: Remote (Germany-based)
- Management and further development of all tools and processes in the domains of real-time threat detection & response and attack surface management, including our Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR) platforms.
- Development, operation, and continuous optimization of SIEM and EDR detections as well as integrations with third party tools and data sources.
- Design of technical and organizational incident response processes and automation of response actions leveraging our Security Orchestration Automation and Response (SOAR) platform.
- Performing and assessing security tool aided scans of cloud environments, endpoints and web applications for vulnerabilities, weaknesses, and misconfigurations.
- Extracting valuable insights and actionable recommendations for our IT teams from all sorts of security and system data by applying analytical methods.
- Reviewing the day-to-day security incident handling activities conducted by our Tier 1 and 2 Security Analysts, facilitating knowledge transfer in the team, and promoting continuous learning and self-development.
- Acting as a member of the virtual CICT (Cyber Incident Coordination Team) which is formed in major security incidents. Providing both technical expertise and the analytical skills to investigate cyber-attacks on a deeply technical level.
- B.Sc. or M.Sc. in computer science, information security, data science, software engineering or a comparable qualification
- 3+ years of professional experience in Cyber Security technology
- Hands-on experience in at least three of the following domains:
- Security Information and Event Management (SIEM)
- Security Orchestration Automation and Response (SOAR)
- Amazon Web Services (AWS)
- Microsoft Azure
- Industry recognised qualifications (CISSP, SSCP, CCSP, SANS GIAC, CompTIA) would be an advantage
- Strong knowledge of enterprise information technology, such as: Microsoft environments, including Windows, Active Directory and Office 365
- Common operating systems, including Windows, Linux and MacOS
- Networking principles, topologies and protocols
- Identity and Access Management
- Containerization with Docker, Kubernetes, Amazon ECS and similar
- Source control management, i.e., Git, GitLab, GitHub, Azure DevOps
- Ability to cope with stress and handle many sources of information in the event of multiple major security incidents occurring at the same time and to develop and present solutions for mitigating security issues in a non-offensive, supportive way on all technical and managerial levels.
- Language skills: Fluent in English (must), Language Skills in German or Polish (desirable)
- Individual solutions for the flexible organisation of working hours and location
- Targeted and individual training for your professional and personal development
- A central location in Hamburg's city centre with good transport options (bus & train)
- Subsidy for Deutschlandticket ProfiTicket & bike leasing
- Effective health management (e.g. health week, free sports programmes & Wellhub)
- 30 days of holiday & frequent events for employees
- Company restaurant, free magazines & various discounts via corporate benefits
- A culture in which personal responsibility, teamwork and creativity are valued and you have room for creativity and for exciting and challenging tasks
If you are looking for an independent position and would like to enrich our existing team with fresh impulses, we look forward to receiving your complete application documents.
Your contact for this position is Surachana Griffiths.
We are an international employer and equal opportunities are important to us. That's why we welcome everyone in their uniqueness, regardless of e.g. religion, gender, skin color, disability in our house.
GIMED1_DE
