Incident Responder (w/m/d) 80-100%

The potential employer, a renowned Swiss critical infrastructure-company and a significant player in the industry, is sustainably expanding the field of information security.

Tasks

• In this exciting role, you will actively help to ensure the continued development of the Cyber Defence Center
• Analysing and correlating events to detect attacks
• Threat modelling and identifying new SIEM use cases
• Developing recommendations for the further development of the Cyber Defence Center
• Offering support in the event of an attack and coordinating with internal and external bodies
• Performing forensic analyses on compromised systems
• Actively searching for threats (threat hunting)
• Analysing the international situation, particularly in the energy sector
• Fostering active exchange with SOCs and CERTs of other critical infrastructure operators and authorities
• Providing an on-call service (every 5-6 weeks)

Requirements

• A degree in information security and at least 2 years SOC / Incident Response experience
• Experience working in a Security Operation Center and in Incident Response
• Familiarily with technologies such as firewalls, IDS, SIEM or EDR
• Previous experience in forensic investigations would be an advantage
• Experience using scripting languages (especially Python and Powershell) would be nice to have
• Practical knowledge of the following tools would be an advantage : Splunk, Cyberreason, CISCO IDS, Snort, Elasticsearch
• Very good written and spoken English. Knowledge of German is a plus

Benefits

• The CD-Team team consists seven people, responsible for detection and response of cyber security incidents.
• The team is part of the Cyber Security department and directly reporting to the CISO
• The team is a small, close-knit group who supports each other in good and tough moments, lives security and technology and strongly value inclusion and equality
• They are working together, and together they also enjoy a drink after a hard day - or from time-to-time they leave work behind and engage in leisure activities together
• Modern attractive work environment
• Support of individual development - internal / external trainings
• Flexible home office ruling (as long you are flex too)
• 5 minutes walk to Aarau station
• Attractive holiday and renumaration package

cyberunity : we are a cyber security talent agency, placing cyber security specialists with potential employers in permanent positions Focus : we are 100% specialized in cyber security recruiting.

Our focus is on building a cyber-security-career-community as well as increasing cyber-resilience Content : Through professional articles, cyber circles with CISOs and daily expert talks we build our community and underline our cyber security focus.

cyberunity-Insights : visit our insights on our website