Personalberatung Berlin. Personalvermittlung von IT-Profis. 📞 03052105983
Cyber Security Operations Specialist, Germany
Location
Germany
Posted
1 day ago
Salary
€60K - €80K / year
Seniority
Senior
Job Description
Cyber Security Operations Specialist, Germany
The Formula Consulting
• Your mission is to ensure the secure operation of IT and OT systems and protect them against cyber-attacks. • You monitor security-relevant events, assess vulnerabilities and derive technical and organizational measures. • You bring external service provider expertise in-house. • You work closely with IT, OT, QA and Compliance and translate regulatory requirements (e.g., NIS2, GxP) into operational security processes. • You assist management in preparing and implementing measures to strengthen security awareness across business units. • You are the primary contact for innovation, further development and optimization of central security technologies (network, IAM, endpoint, PAM). • You support colleagues in detecting, prioritizing, documenting and escalating cyber security incidents. • You contribute to the continuous improvement of security operations processes and playbooks.
Job Requirements
- You have successfully completed a degree, ideally in Computer Science, IT Security or Business Informatics (or a comparable qualification).
- You have at least 5 years of professional experience in the cyber security field.
- You hold at least one relevant certification (e.g., CISSP, GIAC, ISO 27001, SOC or Incident Response certification).
- You have solid professional experience in Security Operations (SOC), Incident Response, SIEM or security-critical operations.
- You understand how security works in practice and can analyze and assess risks and vulnerabilities in a risk-oriented manner, even under time pressure.
- You speak German fluently (at least C1) and have a good command of English.
- Ideally, you have experience in regulated or critical environments such as pharmaceuticals or critical infrastructure (KRITIS).
Benefits
- Exciting projects in operational cyber security (IT & OT) with a focus on NIS2, GxP and ISO 27001.
- Long-term in-house projects with your employer.
- A stable, successful company.
- Opportunities to learn from external and internal subject matter experts.
- Budgets for individual training and development.
- Remote work across Germany possible, with approximately 20–30 days/year on-site meetings at the headquarters on the Baltic Sea for workshops and team events.
- Possibility to work abroad within the EU for up to 2 months.
- An office in the heart of Berlin with an innovative and pragmatic team.
- A friendly, supportive corporate culture.
- Company events.
- 30 plus 2 days of vacation.
- Attractive salary, with 10% variable component.
Related Guides
Related Categories
Related Job Pages
More Security Operations Jobs
Role Description We are looking for a SNOC Analyst Tier 2 or 3 to support overnight security and network operations monitoring for a managed services environment. This role is ideal for someone with hands-on IT, NOC, SOC, or managed services experience who is comfortable working independently during evening hours and following structured operational procedures. This is a remote role with preference for candidates based in Hawaii due to schedule alignment. The analyst will support a 2:00 PM to 1:00 AM HST schedule, which aligns with 8:00 PM to 7:00 AM Eastern Time coverage. The position follows a 4-day workweek with 3 days off. Key Responsibilities - Review security and network alerts and validate event details. - Create, update, and maintain accurate tickets with clear documentation. - Document findings and escalate suspicious activity or service-impacting issues when required. - Follow established runbooks and escalation procedures. - Complete clear shift handoff notes for ongoing visibility and continuity. - Work with SIEM platforms, EDR/XDR tools, Microsoft security tools, ticketing systems, remote monitoring tools, and basic network monitoring platforms. Qualifications - Previous experience in IT support, NOC operations, cybersecurity monitoring, managed services, or SOC alert triage. - Experience with Microsoft 365, Microsoft Sentinel, Splunk, SentinelOne, CrowdStrike, firewall logs, phishing triage, endpoint alerts, VPN alerts, device availability monitoring, or network connectivity troubleshooting. Requirements - Strong attention to detail and accurate documentation habits. - Clear written communication and reliable shift handoff practices. - Ability to follow escalation procedures and structured operational workflows. - Comfort working independently during evening hours. - Ability to identify potential issues, communicate clearly, and take ownership of assigned shift responsibilities. Preferred Qualifications - Security+, Network+, CySA+, SC-200, AZ-500, or equivalent hands-on experience. - Basic understanding of networking, Windows systems, Microsoft 365, endpoint security, common cyber threats, alert triage, network troubleshooting, and ticket documentation. Benefits - 401(k) - 401(k) matching - Dental insurance - Employee discounts - Flexible schedule - Health insurance - Training & development - Tuition assistance - Vision insurance
Security Operations Engineer
TableCheckA fully integrated Restaurant Booking & Table Management System built to help restaurants enhance their guest experience
• Lead end-to-end implementation and maintenance of SOC 2 , ISO 27001 , and related compliance programs through our key partner (Drata). • Build fully automated vulnerability scanning pipelines integrated with AWS , EKS/Kubernetes , and CI/CD workflows. • Manage security tooling for cloud-native environments (e.g., IaC security, container runtime protection). • Conduct risk assessments and audits, aligning with NIST CSF or MITRE ATT&CK frameworks. • Collaborate with engineering teams to remediate vulnerabilities and implement security controls.
SOC Security Analyst
Authentic8The Silo Web Isolation Platform from Authentic8 enables anyone, anywhere, on any device to utilize the web without risk.
• Monitor, investigate, and respond to security detections across the SIEM, driving alerts to resolution. • Develop, tune, and maintain SIEM use cases and correlation rules to improve detection coverage. • Build and deliver operational reports and dashboards from available SIEM log source data. • Identify, assess, and escalate high-impact events from multiple data sources to senior staff and stakeholders following established procedures. • Intake, triage, and respond to security reports (phishing, suspicious activity, etc.), escalating as necessary. • Own the lifecycle of security tickets in the case management system, ensuring accurate documentation, timely updates, and proper closure. • Support proactive investigations and threat hunting as directed. • Provide day-to-day SOC operational support and coverage, communicating findings and relevant event details clearly to team members and stakeholders. • Draft and update SOC and Authentic8 documentation, runbooks, standards, and procedures. • Work with system and application owners to remediate discovered security vulnerabilities. • Ability to collaborate effectively in a dynamic team environment.
Adjunct Faculty, Cyber Operations
UMGC VenturesA new model in higher education funding from a leader in education innovation, UMGC.
• Teach remotely for the Cyber Dev Operations program. • Engage students through frequent interaction that motivates them to succeed. • Guide students in active collaboration and the application of their learning in problem- and project-based learning demonstrations. • Provide rich and regular constructive feedback, utilizing rubrics effectively for the assessment of student work, acknowledging student accomplishments. • Demonstrate relevant and current subject-matter expertise, helping students connect concepts across their academic program.



