Senior Security Operations Center Specialist at Liebherr Group | Hybrid Hired

About the role

Senior SOC Specialist responsible for Security Operations Center infrastructure and optimization at Liebherr. Collaborating with teams to improve response capabilities and document processes.

Responsibilities

Use Case Development: Design and test new security use cases to enhance the detection and response capabilities of Liebherr’s SIEM system
Log Source Onboarding: Onboard and integrate various log sources into the SIEM system, ensuring comprehensive visibility across the organization’s IT environment
SOAR Playbook Implementation: Design, implement, and maintain SOAR playbooks to automate incident response processes and improve operational efficiency
System Optimization: Continuously evaluate and optimize the performance of the SIEM and SOAR systems to ensure they meet the evolving security needs of the organization. Also optimize costs in regards to Log sources and their retention
Threat Detection Engineering: Design and implement advanced detection techniques and perform threat hunting as well as lead tuning exercises and detection gap analysis
Collaboration: Work closely with the SOC team and other IT departments to ensure seamless integration of security tools and processes
Documentation: Maintain thorough documentation of use cases, log source configurations, and SOAR playbooks for future reference and compliance purposes

Requirements

Bachelor’s/Master’s in Cybersecurity, Computer Science, or related field
6+ years in cybersecurity, ideally as SOC-Engineer
Hands-on knowledge of SIEM, and security analytics tools (e.g. Microsoft Sentinel, Microsoft Defender XDR, Elastic SIEM)
Familiarity with SOAR platforms and automation processes (especially Microsoft Logic Apps, Microsoft Sentinel Automations)
Experience in security log source onboarding & automation of security tasks
Proficiency in scripting and programming languages (e.g. Python, PowerShell) for automation tasks
English is a Must, German and French are a plus
Understanding of cybersecurity frameworks and standards (e.g. ISO27001, NIST, GDPR)
Strong analytical, problem-solving skills and communication skills
Following certificates are a plus: GIAC Python Coder (GPYC), GIAC Cloud Security Automation (GCSA), GIAC Security Operations Certified (GSOC), Cloud certifications (AWS, Azure, or GCP)

Benefits

Attractive salary and social benefits
Flexible and hybrid working
Freedom for creative work
Safe and secure workplace
Individual development and training opportunities
Meal voucher
Life and accident insurance
Exclusive offer for a premium private health insurance package
Bonus payments for Christmas and holidays, based on the collective agreement

Similar roles

Browse all Security Operations jobs

13 hours ago

EN

Supervisor, Global Security Operations Center

Enbridge

Supervisor for Global Security Operations Center at Enbridge. Leading a dedicated 24/7 team to monitor and protect global facilities and assets.

Hybrid Role

Calgary Canada Security Operations

yesterday

OH

Security Operations Analyst

Orion Health

Security Operations Analyst at Orion Health focusing on monitoring and maintaining security tools while collaborating with teams. Engaging with real - world threats and enhancing operational security processes.

Hybrid Role

Auckland New Zealand Security Operations

yesterday

DL

Senior Security Operations

Dolby Laboratories

Senior Global Security Analyst overseeing physical security operations at Dolby’s San Francisco headquarters. Collaborating with global partners to strengthen safety systems across Dolby locations.

Onsite Role

San Francisco United States Security Operations

$100,600 - $134,600 per year

yesterday

EB

Director, Integrated Security Operations Centre

EQ Bank | Equitable Bank

Director overseeing integrated security operations, focusing on SOC management and cyber defense strategies for a fintech company in Canada.

Hybrid Role

Toronto Canada Security Operations

4 days ago

NO

Security Operations Engineer, Detection and Response Team

Notion

Security Operations Engineer protecting Notion’s systems and users by investigating and responding to security events. Collaborating with a global team to enhance security processes and protocols.

Hybrid Role

Hyderabad India Security Operations

4 days ago

AR

SecOps Engineer

Aristocrat

SecOps Engineer at Aristocrat maintaining security for innovative iGaming platforms and collaborating with cross - functional teams. Focused on AWS services security and compliance assessments.

Hybrid Role

Skopje North Macedonia Security Operations

5 days ago

VG

Cybersecurity Incident Response Analyst – Level 2

Var Group

Cybersecurity Incident Response Analyst handling security events and incidents at Var Group in a hybrid work environment. Focused on ensuring response to security incidents and improving security processes.

Hybrid Role

Treviso Italy Security Operations

5 days ago

VG

Cybersecurity Incident Response Analyst – Level 3

Var Group

Cybersecurity Incident Response Analyst handling security incidents and threats. Working in a hybrid environment at Yarix, a leader in digital evolution.

Hybrid Role

Treviso Italy Security Operations

5 days ago

SH

IAM Security Ops Analyst II

Syneos Health

IAM Security Ops Analyst overseeing access management for clinical trial applications at Syneos Health. Collaborating with IT and compliance teams to enforce IAM policies and improve operational performance.

Hybrid Role

Hyderabad India Security Operations

5 days ago

CI

Fraud Operations Group Manager – Cards Security Operations

Citi

Fraud Operations Group Manager responsible for managing fraud management policies in the Operations Services team. Leading teams in minimizing fraud impacts while ensuring compliance and operational objectives.

Hybrid Role

San Antonio United States Security Operations

$119,680 - $179,520 per year