water IT Security & Defense logo
water IT Security & Defense

We make IT Security a Defensive Art - powered by Microsoft

Security Analyst, 1st Level

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 51-200H1B No SponsorCompany SiteLinkedIn

Location

Germany

Posted

8 days ago

Salary

0

Seniority

Senior

Bachelor DegreeGermanEnglishLinuxMacOSPython

Job Description

Security Analyst, 1st Level

water IT Security & Defense

• You analyze. You prioritize. You protect. • With your trained eye on our SIEM (Security Information & Event Management), you detect security-relevant events, assess incidents, and ensure nothing falls under the radar. • You prioritize efficiently and keep the big picture even when data volume is high. • Following agreed SLAs, you handle incidents, document your findings, and, when necessary, communicate directly with our clients. • You create clear and well-founded reports that deliver not only facts but real added value. • You present your analyses in a concise, practical way—whether on client calls or internally with the team. • You provide concrete recommendations for closing security gaps and optimizing protective measures. • Because true security doesn’t take breaks, you’ll work with your team in a 3-shift system (early, late and night shifts).

Job Requirements

  • You have prior SOC experience and know how to detect, analyze, and prioritize security incidents.
  • You are familiar with enterprise networks and system architectures—Windows, Linux, or macOS are no strangers to you.
  • You can read and understand scripts (e.g., PowerShell, Bash, or Python) and ideally use them actively.
  • You handle sensitive data responsibly—and can explain technical matters to non-technical stakeholders.
  • You are fluent in German and English.
  • Your primary residence is in Germany.
  • Ideally, you hold certifications such as OSCP, CEH, SC-200, AZ-500, or similar.

Benefits

  • Trust-based leave — you decide how much time off you need beyond the statutory minimum.
  • Work & sleep accommodation in our modern office-apartments in Düsseldorf and Vienna.
  • 100% remote — work up to 182 days per year from within the EU.
  • Mental health program “OpenUp Family” — available for you and up to 3 loved ones.
  • 1Password — also available for private use.
  • €50 monthly internet allowance.
  • €20 monthly food-delivery credit (Lieferando).
  • water-Shop with cool branded merch.
  • Corporate benefits for fashion, travel, tech and more.
  • After your probation period: company health insurance including dental coverage and cancer screening scan.
  • Company pension plan with 25% employer contribution (increasing after 3 and 5 years).
  • JobRad (bike leasing).
  • Edenred cash card with €44 monthly tax-free benefit.
  • Corporate fitness via EGYM Wellpass — for after the New Year’s resolutions :P
  • Company mobile phone — also permitted for private use.

Related Job Pages

More Security Analyst Jobs

ContractRemoteTeam 11-50Since 2013H1B No Sponsor

• Secure the future of compliance—lead CMMC readiness with your CCP expertise and make an impact where cybersecurity meets strategy. • Support clients in achieving Cybersecurity Maturity Model Certification (CMMC) readiness. • Play a critical role in delivering gap analysis, developing and implementing remediation plans, and supporting process documentation and incident response strategies. • Deliver CMMC readiness services, including: Gap analysis, Process remediation, Security documentation, Incident response planning and testing. • Collaborate with stakeholders to ensure understanding and adoption of CMMC requirements. • Contribute to the development of policies, procedures, and system security plans (SSPs). • Support ongoing security assessments and readiness tracking.

United States
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Identify, record, and track risks, issues, non-conformities, and security action plans. • Support assessments of adherence to standards, internal policies, frameworks, and regulatory requirements. • Produce risk analyses, opinions, and reports for leadership, committees, and responsible areas. • Monitor deadlines, owners, evidence, and the effectiveness of mitigation plans. • Contribute to the improvement of the cyber risk management process and control governance. • Support internal and external audits, inspections, and regulatory requests. • Integrate information from incidents, vulnerabilities, third parties, IAM, AppSec, and architecture to provide a consolidated risk view. • Act proactively in initiatives (projects, technology changes, new products) by identifying security risks and proposing controls prior to production rollout. • Define, monitor, and report metrics that measure risk exposure and control effectiveness.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• In this role, you will work directly on Red Team activities. • Plan and execute Red Team exercises, offensive validations, and attack simulations. • Assess exposure of environments, identities, applications, networks, endpoints, and cloud. • Safely exploit vulnerabilities in a controlled manner, documenting attack paths and impacts. • Support the Blue Team and CSIRT with inputs to improve detections, playbooks, and controls. • Produce technical reports with evidence, risk analysis, recommendations, and prioritization. • Re-validate fixes and support tracking of mitigation plans. • Contribute to the methodology, ethics, security, and governance of offensive activities.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Assess vulnerabilities in applications, APIs, libraries, components, and pipelines. • Support squads in remediating vulnerabilities and adopting secure development practices. • Operate and enhance SAST, DAST, and SCA tools, API security solutions, and bot protection. • Support vulnerability management by prioritizing risks based on criticality and exposure. • Perform technical risk analyses of applications, integrations, and digital user journeys. • Contribute to secure development standards, technical guides, checklists, and training. • Support automation, shift-left initiatives, and continuous security improvements across the SDLC.

Brazil