Requirements:

• SOC

• SIEM

• Splunk Certified Admin certification (is a plus)

• English

• German (nice to have)

Job description

Manage Now is a German company specializing in comprehensive IT solutions, supporting enterprises in their digital transformation. With extensive experience, it offers high-quality services that include IT infrastructure management, business applications, and modern workplace (Digital Workplace) solutions. Manage Now focuses on long-term relationships, tailoring services to meet clients' specific needs, ensuring stability, security, and innovation. The company operates throughout Germany, with its primary goal being to help clients achieve long-term success in a dynamic technological landscape.

Manage Now serves a wide range of clients, including large enterprises and organizations with complex IT needs. The company provides modern IT infrastructures and scalable cloud solutions, such as SAP and AI, customized to clients' requirements. After separating from the Japanese Fujitsu group, Manage Now operates as a dynamic IT service provider, supporting the digital transformation of the German economy.

As a SOC Analyst you will be part of the Manage Now (Cyber Security) division.
The Cyber Security team is responsible for identifying and detecting threats, as well as protecting
Manage Now and its clients from cyberattacks. As part of this young and diverse team, you will make
a valuable contribution to the delivery of Managed Security Services and provide consulting services
to our clients.

Main responsibilities

• Operating, monitoring, and analyzing events within the Manage Now SIEM infrastructure,

• Adjusting configurations and expanding the tool landscape to improve protection against cyberattacks,

• Enhancing tools, processes, procedures, and reports,

• Building and expanding SIEM instances within the Managed Service area,

• Integrating interfaces with other services,

• Monitoring and analyzing security events within the Manage Now infrastructure and for our Managed Security clients,

• Investigating security incidents and their root causes, deriving measures to improve protection against cyberattacks,

• Developing tools, processes, procedures, and reports,

• Creating incident response plans and improving existing use cases and playbooks.

Qualifications

• Completed studies in IT or IT security, a completed IT-related apprenticeship, or a comparable qualification.

• Several years of professional experience in IT or Cyber Security, preferably in a Security Operations Center (SOC) or SIEM environment.

• Extensive knowledge in the areas of incident detection, log analysis, and securing systems, networks, applications, and data.

• Proficient handling of artefacts, IoCs, and threat intelligence.

• Certification as a Splunk Enterprise Certified Admin.

• GIAC, OSCP, CEH, or equivalent certifications are an advantage.

• Strong communication skills and excellent proficiency in English.