Senior Security Operations Center Analyst (f / m / d)

Job Title: Senior Security Operations Center Analyst (f/m/d), Wuppertal

Client:

Thinkproject

Location:

Wuppertal, Germany

Job Category:

Other

EU work permit required:

Yes

Job Reference:

ded68f0b25ae

Job Views:

2

Posted:

Expiry Date:

Job Description:

Introducing Thinkproject Platform

Thinkproject offers a cohesive alternative to fragmented construction software, integrating a broad portfolio of solutions into an innovative platform that enhances features, integrations, and user experiences. Our expertise in information management and industries like building, infrastructure, and energy empowers clients to manage their assets throughout their lifecycle via a Connected Data Ecosystem.

Role Overview:

We seek a highly experienced Senior SOC Analyst to identify, investigate, and respond to security threats and vulnerabilities across our organization. The role demands expertise in monitoring and securing endpoints, networks, cloud platforms, applications, and infrastructure, with the capacity to handle complex incidents independently and improve SOC operations.

As a senior team member, you will lead investigations into threats such as APTs, malware outbreaks, and targeted attacks. Your responsibilities include analyzing security events, forensic evidence collection, root cause analysis, and developing detection capabilities across SIEM, EDR, and other tools.

You will engage in threat hunting, leveraging your understanding of application code, infrastructure, SDLC, and CI/CD pipelines to identify risks. You will also implement automation and playbooks using SOAR platforms to improve response efficiency.

The ideal candidate has a strong technical background, proactive approach, and a passion for staying ahead of emerging threats. Collaboration with IT, DevOps, and application teams is essential to enhance detection, SOC processes, and compliance.

This position involves reactive incident response, proactive detection engineering, threat hunting, and vulnerability management. You will contribute to penetration testing, security assessments, audits, and mentor analysts while maintaining SOC documentation.

This role reports to the Director of Cyber Security and operates within the broader Cyber Security, Network, and Security Engineering teams.

Main responsibilities include:

• Investigating and responding to security alerts from SIEM, EDR, and other tools.
• Leading threat hunting activities using threat intelligence and logs.
• Analyzing logs, API configurations, network data, and architecture to support detection and investigation.
• Managing complex security incidents end-to-end.
• Configuring and tuning SIEM and detection tools.
• Developing incident response playbooks and automation workflows.
• Managing multiple investigations and SOC operations efficiently.
• Conducting forensic analysis during investigations.
• Collaborating with DevOps, IT, and development teams for mitigation.
• Coordinating security assessments and penetration tests.
• Participating in security testing exercises.
• Improving SOC operations and detection capabilities.
• Maintaining documentation for investigations and threat intelligence.
• Staying updated on threat landscapes and emerging tools.
• Aligning SOC practices with industry standards like ISO 27001.
• Implementing security solutions in CI/CD pipelines.
• Supporting SOC process development and team training.

Requirements:

You Must Have:

• Proficiency in English, effective communication skills.
• Bachelor’s degree in Cyber Security or related field, or equivalent experience.
• Strong knowledge of cybersecurity principles, incident response, and threat landscapes.
• Hands-on experience with SIEM, EDR, threat intelligence, and vulnerability tools.
• Experience with automation, SOAR platforms, and threat hunting.
• Knowledge of cloud platforms like Azure and AWS.
• Experience with forensic analysis and managing security issues.

It Would Be Good to Have:

• Proficiency in German.
• Experience with red/purple team exercises, containerized environments, and behavioral analytics.
• Knowledge of Microsoft Sentinel, SaaS/cloud-native environments, and AI security threats.

What we offer:

Lunch 'n' Learn, Women’s Network, LGBTQIA+ Network, Coffee Chat Roulette, Free English Lessons, Thinkproject Academy, Social Events, Volunteering, Open Forum, Hybrid work, Unlimited learning.

Join us to help shape our company's future, with a focus on mutual respect, staff development, and a dynamic company culture.