Jobs & Karriere

(Senior) Cyber Security Engineer (f/m/d)

  • Burchardstraße 11, 20095 Hamburg
scheme image

Bauer Technology sets the strategy for the Bauer companies within the group, it co-ordinates major investments and technology change programmes, bringing the company on a journey from a highly federated set of autonomous and independent companies to an operation that maximises the opportunity of working at scale across the group – through knowledge sharing, collaboration and centres of excellence.  Bauer Technology has a wide range of knowledge and experience from publishing, and printing, to radio broadcasting, and the full range of Enterprise IT systems and services and digital customer facing services.
 
Distributed across Europe, Bauer Technology has significant presence in Germany (headquarters), Poland and the United Kingdom. It is a highly matrix managed organisation, often having dual reporting lines to Group functions and business leadership structures within each territory.

The role holder will be part of the Bauer Cyber Defence Centre (CDC) Team. The CDC operates internal real-time cyber threat detection and response services for all Bauer entities in 14 countries across Europe, ensuring cyber-attacks are stopped before they can cause any damage. Additionally, the CDC continuously monitors Bauer’s group wide attack surface to detect security risks and managing their mitigation.

For our team located in Hamburg, Warsaw, London, Peterborough or remote we are looking for a (Senior) Cyber Security Engineer (f/m/d).

YOUR RESPONSIBILITIES

  • Management and further development of all tools and processes in the domains of real-time threat detection & response and attack surface management, including our Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR) platforms.
  • Development, operation, and continuous optimization of SIEM and EDR detections as well as integrations with third party tools and data sources.
  • Design of technical and organizational incident response processes and automation of response actions leveraging our Security Orchestration Automation and Response (SOAR) platform.
  • Performing and assessing security tool aided scans of cloud environments, endpoints and web applications for vulnerabilities, weaknesses, and misconfigurations.
  • Extracting valuable insights and actionable recommendations for our IT teams from all sorts of security and system data by applying analytical methods.
  • Reviewing the day-to-day security incident handling activities conducted by our Tier 1 and 2 Security Analysts, facilitating knowledge transfer in the team, and promoting continuous learning and self-development.
  • Providing guidance to our Tier 1 and 2 analysts in major incidents and complex cases.
  • Supervision of managed security services providers and security tool vendors.
  • Acting as a member of the virtual CICT (Cyber Incident Coordination Team) which is formed in major security incidents. Providing both technical expertise and the analytical skills to investigate cyber-attacks on a deeply technical level.

YOUR PROFILE

  • A passion for technology and security safeguarding with a desire to deliver
  • 5+ years of professional experience in information technology
  • Hands-on experience in at least three of the following domains:
    • Security Information and Event Management (SIEM)
    • Security Orchestration Automation and Response (SOAR)
    • Endpoint Detection and Response (EDR)
    • Web Application and Vulnerability Scanning
    • Amazon Web Services (AWS)
    • Microsoft Azure
  • Advanced skills in at least two of the following areas:
    • Data analytics and query languages such as SQL, Pandas, Kusto, Lucene, Splunk SPL
    • Infrastructure as Code (IaC) frameworks such as Terraform, Pulumi, Bicep
    • Programming languages such as TypeScript, Python, Go
    • Containerization with Amazon ECS, Docker, Kubernetes
    • Source control management, i.e., Git, GitLab, GitHub, Azure DevOps
  • Strong knowledge of enterprise IT fundamentals, such as:
    • Microsoft environments, including Windows, Active Directory and Office 365
    • Common operating systems, including Windows, Linux and MacOS
    • Networking principles, topologies and protocols
    • Identity and Access Management in public cloud environments
  • Analytical, data-driven approach to problem solving.
  • Ability to cope with stress and handle many sources of information in the event of multiple major security incidents occurring at the same time.
  • Expert skills in understanding potential security weaknesses and attack chains in globally distributed hybrid IT environments based on log data and security tools like SIEM, EDR, IDS/IPS.
  • Ability to develop and present solutions for mitigating security issues in a non-offensive, supportive way on all technical and managerial levels.
  • Completed studies in computer science, information security, data science, software engineering or a comparable qualification or significant work experience
  • Industry recognised qualifications (CISSP, SSCP, CCSP, SANS GIAC, CompTIA) would be an advantage
  • Language skills: Fluent in English (must), Language Skills in German or Polish (desirable)

OUR BENEFITS

We want to inspire not only our customers, we also want to inspire our colleagues. How? By giving you the opportunity to take on responsibility and by offering you a long-term perspective. You can also benefit from our attractive offers:
  • Individual solutions for the flexible organisation of working hours and location
  • Targeted and individual training for your professional and personal development
  • Effective health management (e.g. health week, free sports programmes & Gympass)
  • 30 days of holiday (Hamburg) & frequent events for employees
  • Company restaurant, free magazines & various discounts via corporate benefits
  • A culture in which personal responsibility, teamwork and creativity are valued and you have room for creativity and for exciting and challenging tasks

We look forward receiving your applications (including cover letter, resume and certificates) for this role. Your contact for this job offer is Sarah Osswald with the reference number: GTGH-2023/01