Detection and Response Engineer mfd
Detection and Response Engineer mfd
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
...to oversee and drive the development maintenance and strategic direction of Detection and Response capabilities within the METRO AG. The role serves as a central role responsible for defining the Security Operations Center (SOC)engineering capabilities prioritizing features gathering requirements and ensuring that SOC align with business objectives and related compliance and information security requirements.
You will be part of a team that is responsible to establish METRO AG wide Detection and Response capabilities to safeguard METRO AGs assets and to ensure timely detection and response to cyber security threats and incidents.
Your tasks:
- Evaluate and design cyberdefense capabilities and target architecture to ensure they align with the best practices and security standards as well as fit in overall METRO AG architecture and Cyber Security strategy.
- Collaborate with Security Architecture team and other stakeholders to develop and maintain the advanced threat detection and mechanisms to protect METRO AGs assets effectively.
- Oversee the scope coverage and performance of the METRO AG SOC tools and technologies including SIEM SOAR identities network and endpoint detection and response capabilities to protect the METRO AG assets.
- Collaborate and provide business and technical expertise to MSSP Engineers to optimize the MSSP service delivery scope coverage and quality.
- Develop and implement automation workflows to enhance METRO AGs SOC efficiency and response times.
- Mentor Detection and Response team and facilitate knowledge sharing to improve the overall expertise of the Detection and Response team.
Qualifications :
Educational Background: A degree related to cybersecurity or a relevant field is required.
Experience: A minimum of 3 years of handson experience in cyber security and threat detection is essential.
Advanced Threat Detection Expertise: Demonstrated deep knowledge of advanced threat detection mechanisms and the ability to stay uptodate with evolving threat landscapes. This includes a thorough understanding of emerging threats attack vectors and countermeasures.
SOC Tools and Technologies: Proficiency in utilizing Security Operations Center (SOC) tools and technologies including SIEM (Security Information and Event Management) SOAR (Security Orchestration Automation and Response) identities management network detection and endpoint detection. Familiarity with SIEM tools such as Splunk Google SecOps Azure Sentinel as well as EDR tools like Crowdstrike or Microsoft Defender is essential.
MSSP Collaboration: Familiarity with Managed Security Service Provider (MSSP) standards and practices including the ability to collaborate effectively with MSSP engineers. This collaboration should involve aligning strategies and ensuring the integration of MSSP services with inhouse security operations.
Automation Proficiency: Proven experience in implementing automation workflows within the context of cybersecurity. This includes streamlining and optimizing security processes enhancing incident response and leveraging automation for improved threat detection and mitigation.
Additional Information :
What we offer:
- You are part of an international and experienced team with a high degree of personal responsibility and independence in a friendly highly dynamic and proactive environment
- You will gain insight into the management holding of an international listed retail group and work operationally on challenging projects
- We actively support you in your professional development and promote your potential through collegial coaching and advice
- We offer you flexible home office solutions employee discounts in our wholesale stores as well as an attractive compensation package
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
