2 days ago Be among the first 25 applicants
Direct message the job poster from REWE International AG
Technical and IT Sourcer Expert @ REWE International AG
As the IT of the REWE Group Austria, we work together with our more than 700 employees to develop innovative IT products and services for all our corporate divisions in Austria and abroad, setting the tone for modern trade.
As part of our Security Operation Center, you will be responsible for the continuous monitoring and analysis of data provided by our Toolset and Platform used by the SOC. You’ll analyze, investigate relevant events, alerts, and information security incidents, providing insights to improve our security posture during post-incident analysis.
Job Responsibilities
* Respond to security incidents according to policies and procedures
* Guide first responders in handling security incidents
* Update stakeholders and decision-makers timely and accurately
* Communicate investigation findings to improve security measures
* Maintain and validate incident response plans
* Analyze data for management reports and metrics
* Stay informed on current threats via relevant sources
* Assess impact of new threats and develop use cases with security engineers
* Conduct root-cause analysis and participate in elimination activities
* Create runbooks for common incidents to automate resolution
* Develop new use cases to enhance capabilities
* Onboard new data sources and systems to existing tools
* Collaborate with infrastructure teams, security officers, and SOC colleagues
* Support a culture of open feedback and continuous learning
* Identify potential security risks and escalate accordingly
Qualifications
* 3+ to 8+ years experience as a security analyst or similar role in SOC
* Degree in computer science, information security, or related field, or equivalent training
* Certifications like CISSP or GIAC are advantageous
* Experience in complex corporate environments
* Strong problem-solving skills
* Ability to work under pressure professionally
* Independent analysis skills
* Effective communication skills for technical and non-technical audiences
* Decision-making ability
* Knowledge of SOC frameworks like Cyber Kill Chain, MITRE
* Experience with SIEM, XDR, EDR, NDR, PAM solutions
* Knowledge of tools like Splunk, SentinelOne, Proofpoint, CyberArk is a plus
* Network security expertise, including VPN, firewalls, web servers, Cloud
* OT and IoT knowledge is beneficial
* Proficiency in scripting languages (Perl, Python, PowerShell)
* Reliable and responsible mindset
* Strong presentation and moderation skills
* Entrepreneurial, analytical, and conceptual skills
* Proficiency in English; willingness to learn local language
Additional Information
* Long-term, varied work in a supportive environment
* Flexible hours and remote options
* Staff discounts, training opportunities, parking, lunch allowance
* Salary from EUR 60,000, negotiable based on experience
We value diversity and inclusion. We welcome applications from all backgrounds, especially encouraging women to apply.
Job Details
* Seniority level: Associate
* Employment type: Full-time
* Industry: Retail
#J-18808-Ljbffr