Cyber Security Analyst

Join a Cyber Security Operations team protecting modern cloud infrastructures in complex, international environments. As a Cyber Security Analyst, you will focus on advanced detection and response, helping to identify, contain, and prevent real cyber threats across critical systems.

• Monitor and analyse security alerts in a 24/7 SOC environment, including on-call rotations (Tier 1/2).
• Perform incident triage and validation using logs, telemetry, and contextual data.
• Escalate confirmed or high-risk incidents to Tier 3 / Incident Response teams.
• Support forensic investigations, root-cause analyses, and containment activities.
• Develop, test, and refine detection rules and use cases aligned with MITRE ATT&CK.
• Participate in threat hunting and purple team activities.
• Develop and improve playbooks, runbooks, and cloud-specific response processes.
• Create dashboards and KPIs, analyse trends, and derive improvements from lessons learned.

• Degree in computer science, IT security, or a comparable qualification, or equivalent practical experience.
• 2–4 years’ experience in a SOC or cyber security operations environment.
• Hands-on experience in alert triage, incident response support, and detection rule development.
• Scripting skills in Python, Power Shell, or Bash.
• Strong knowledge of cloud security (Azure, AWS, or GCP) and container technologies (Docker, Kubernetes).
• Solid understanding of networking, Linux, and common security controls.
• Experience with SIEM platforms and threat intelligence tools.
• Willingness to travel and participate in on-call duties.
• Very good German and English skills.
• Security clearance (SÜ2) or willingness to obtain it.

• A hands-on role in modern cyber security operations.
• Exposure to real-world threats in cloud-based environments.
• Competitive remuneration and modern working conditions.
• Flexible working arrangements, including mobile working options.