About the Company
With our strong brands GMX, WEB.DE and mail.com and over 42 million active users, we are the leading email and communications platform in Germany, Austria and Switzerland. From this strong market position, services and apps are developed that simplify users' digital lives - from office tools and cloud solutions to personal ID management.
Your Tasks
- Innovate and Enhance: Design and continuously improve processes and tools in key areas such as SIEM, cyber threat intelligence, threat hunting, vulnerability management, and digital forensics - helping us maintain a real-time understanding of our threat landscape.
- Lead Incident Response: Triage security alerts and take the lead as Incident Manager / Commander during confirmed incidents, coordinating cross-functional teams under pressure.
- Automate Workflows: Automate detection and response workflows, leveraging established platforms like SIEM or EDR/XDR, as well as your own custom scripts and playbooks.
- Technical Analysis: Perform in-depth technical analyses, including log analysis and digital forensics.
- 24/7 Coverage: Participate in our on-call rotation, ensuring 24/7 security coverage when needed.
Requirements
- Expertise: Strong knowledge of common security operations tools and processes—such as SIEM, cyber threat intelligence, vulnerability management, or forensic tools—and staying current with best practices and standards (e.g., NIST, FIRST, MITRE ATT&CK). Relevant certifications (e.g., OSCP, GCIA, GCIH) are a plus, but not required.
- Technical Foundation: Solid technical foundation with a deep understanding of networks, communication protocols, operating systems, and web-based distributed architectures.
- Continuous Learning: Commitment to continuous learning and regularly sharpening your skills in IT infrastructure and security. Familiarity with modern practices such as DevSecOps, Continuous Delivery, Detection as Code, or Infrastructure as Code.
- Hands-On Skills: Comfortable writing scripts or code in at least one language (solid Python knowledge is a plus) using Git-based workflows.
- Team Player: Excellent communication skills (English level at least C1) and the ability to guide and align stakeholders.