Senior Cyber Incident Handler (f/m/div)

Senior Cyber Incident Handler (f/m/div)

Infineon Technologies – join our Corporate Functions team as a Senior Manager Cyber Incident Handling & Response. You will develop strategies, refine processes and implement initiatives that empower the business to thrive.

Your Role

Key responsibilities in your new role:

• Lead the entire incident lifecycle, including identification, analysis, containment, eradication, recovery, and post‑incident tasks, ensuring a rapid and effective response to security events.
• Operate, refine, and maintain incident response playbooks and runbooks while improving the CSIRT’s internal toolset for greater operational efficiency.
• Triage and investigate security alerts from SIEM and EDR platforms, driving rapid containment actions and supporting thorough remediation efforts to mitigate risks.
• Conduct and support forensic investigations across systems, networks, memory, and disk, analyzing attacker techniques, persistence mechanisms and data exfiltration paths to uncover the full scope of incidents.
• Coordinate all incident response activities, working closely with internal teams (IT operations, legal, communications, regulatory) and external stakeholders.
• Leverage scripting and programming skills, preferably in Python, to develop and automate response and investigation workflows, enhancing detection capabilities and improving workflow efficiency.
• Contribute to a proactive security approach by participating in tabletop exercises, red/blue team engagements, threat hunting, mentoring junior analysts and participating in on‑call rotations for after‑hours support.

Your Profile

We value ambition, responsibility and continuous quality. Key qualifications and skills:

• Degree in Computer Science, Cybersecurity or a related field, or equivalent professional experience.
• At least 5 years of hands‑on incident response, CSIRT/SOC operations or digital forensics expertise.
• Advanced technical proficiency in analysing and responding to complex security incidents such as APT, ransomware, insider threats and supply‑chain attacks.
• Deep understanding of network and system internals, TCP/IP protocols, Windows, Linux and cloud environments (AWS, Azure, GCP).
• Experience with SIEM solutions (Splunk, Sentinel, Elastic), EDR tools (CrowdStrike, Defender, Elastic Endpoint Security) and forensic/network analysis utilities.
• Programming experience in Python for scripting and automation; PowerShell or Bash is a strong advantage.
• Exceptional analytical, written, and verbal communication skills; ability to organise and disseminate critical information under pressure.
• Fluent in English; German language skills considered a plus.

Contact

Bruna Fernandes – LinkedIn

Legal & Diversity Statement

We are on a journey to create the best Infineon for everyone. We embrace diversity and inclusion and welcome everyone for who they are. At Infineon, we offer a working environment characterised by trust, openness, respect and tolerance and are committed to giving all applicants and employees equal opportunities. We base our recruiting decisions on the applicant’s experience and skills. We look forward to receiving your resume, even if you do not entirely meet all the requirements outlined above.

#J-18808-Ljbffr