2 days ago Be among the first 25 applicants
Get AI-powered advice on this job and more exclusive features.
As the IT of the REWE Group Austria, we work together with our more than 700 employees to develop innovative IT products and services for all our corporate divisions in Austria and abroad, setting the tone for modern trade.
As part of our Security Operation Center, you will be responsible for the continuous monitoring and analysis of data provided by our Toolset and Platform used by the SOC. You will analyze, investigate relevant events, alerts, and information security incidents, providing insights to improve our security posture during post-incident analysis.
Job Responsibilities:
Respond to security incidents according to policies and procedures
Provide guidance to first responders handling security incidents
Update stakeholders and decision-makers with relevant information
Communicate investigation findings to improve security posture
Maintain incident response plans and address potential threats
Analyze data for management reporting
Stay updated on current attacks and trends from relevant sources
Assess impact of new threats and develop use cases with security engineers
Participate in root-cause analysis and documentation
Create runbooks for recurring incidents
Develop new use cases to enhance capabilities
Onboard new data sources and systems to existing tools
Collaborate with infrastructure teams, security officers, and SOC colleagues
Support a feedback and learning culture
Identify potential security risks and escalate appropriately
Qualifications:
3+ to 8+ years of experience as a security analyst or similar role
Degree in computer science, information security, or related field, or equivalent experience
Certifications like CISSP or GIAC are a plus
Experience in complex corporate environments
Strong problem-solving skills
Ability to work under pressure and communicate complex issues clearly
Knowledge of SOC frameworks like Cyber Kill Chain, MITRE, etc.
Experience with SIEM, XDR, EDR, NDR, and PAM solutions
Technical knowledge of products like Splunk, SentinelOne, Proofpoint, CyberArk is advantageous
Knowledge of network security, VPN, firewall, web server security, and Cloud
Optional OT and IoT knowledge
Proficiency in scripting languages such as Python, PowerShell, Perl
Strong communication and presentation skills
English proficiency, willingness to learn local language
Additional Information:
Long-term, varied work with a reliable employer
Family-friendly culture with flexible and remote work options
Staff discounts, training opportunities, parking, lunch allowance
Salary from EUR 60,000, negotiable based on experience
We welcome applicants from diverse backgrounds and encourage women to apply. Join us to grow your career in a supportive environment. Apply now!
Please upload your resume to provide insight into your work experience—anonymously if preferred.
We promote diversity and inclusion and look forward to your application regardless of gender, age, background, or disability.
Seniority level Associate
Employment type Full-time
Job function Information Technology
Industries Retail
#J-18808-Ljbffr