SOC Engineer

At Beiersdorf, we want to help people feel good about their skin – and our commitment goes far beyond caring for skin. For years, we have developed innovative skin and body care products for well-known brands such as NIVEA, Eucerin, La Prairie, Hansaplast, and Labello. We act according to our purpose, WE CARE BEYOND SKIN, and take responsibility for our consumers, our employees, the environment and society. 

Behind every brand, every product and every accomplishment are our more than 20, employees. It is for them that we live an inclusive culture of respect and trust that is strongly aligned with our values – CARE, COURAGE, SIMPLICITY and TRUST. We also embrace diversity by valuing the uniqueness of each individual and being committed to equal opportunities for all.

• You will respond to cyber security incidents according to incident response policy and procedures.
• You will triage and assess the risk of incidents, performing real-time analysis and managing workload during investigations/incidents.
• You will provide timely and relevant updates to appropriate stakeholders and decision makers.
• You will communicate investigation findings to relevant business units to help improve the information security posture.
• You will monitor relevant information sources (such as Twitter, LinkedIn and information sharing and analysis centers) to stay up to date on current attacks and trends.
• You will provide feedback to validate and maintains incident response guidelines and processes to address potential threats.
• You will maintain and develops the soc tool landscape technically.

• BS or MA in computer science, information security or a related field or comparable qualification.
• CISSP, GIAC or comparable certification.
• [3+] years of experience in information security, especially in an incident response role or security operations center and / or very well knowledge of the Beiersdorf IT and organizational structure.

Business skills

• Advanced knowledge of cyber attack vectors.
• Ability to work extremely well under pressure while maintaining a professional image and approach.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
• Understands organizational mission, values, goals and consistent application of this knowledge.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
• Ability to effectively influence others to modify their opinions, plans or behaviors.
• A team-focused mentality, with the proven ability to work effectively with diverse stakeholders.
• Strong problem-solving and troubleshooting skills.

Technical Skills

• Experiences with Security Detection Systems (EDR, SIEM, SOAR, UBA, Sandboxes, Vulnerability Scanner, etc.), especially the Microsoft E5 Security tool suite and XSOAR.
• Knowledge of cyber security hunting query languages like kusto, elastic query language, splunk query language, etc.
• Scripting languages: Python, Powershell.
• Wireshark.
• Linux know-how (Filesystem, RBAC, basic system processes, Command line, bash, etc.).
• Windows know-how (Filesystem, RBAC, basic system processes, command line, etc.).
• Basic network know-how ( dhcp, dns, stateful firewall, web application firewall, intrusion detection, proxy server, etc.).
• Email metadata (email headers, etc.).
• Azure Cloud infrastructures and resources.