Technical Expert (Security Operation Center)

Safeguarding dormakaba's business activities through the identification, management, and response to security risks, the Technical Expert within the Security Operations Center (SOC) plays a pivotal role in defining and maintaining an effective security architecture within the IT security operations team.

An experience that matters: Your skills

• 4+ years of hands-on experience in Cybersecurity.
• University degree in Cyber Security, Cryptography, Computer Science, IT, or a related field.
• Experience with security tools and technologies, including EDR, SIEM, and vulnerability management solutions.
• Proficiency in understanding OT security and related protocols to develop and enhance OT-related use cases and rulesets.
• Familiarity with incident handling and communication protocols.
• Up-to-date knowledge of cybersecurity trends, threats, and best practices.
• Industry certifications such as CISSP, CISM, or equivalent.
• Excellent verbal English proficiency.

A job that matters: Your tasks

• Lead orchestration and coordination efforts in response to security incidents or identified vulnerabilities highlighted by the Managed Security Services Provider (MSSP).
• Maintain various SOC tools, including EDR, VM, SIEM, O365, Firewall/Network monitoring appliances, and Cloud monitoring, especially within the Microsoft stack.
• Monitor Threat Intelligence from multiple sources and actively participate in Threat Hunting initiatives and activities
• Review and enhance incident and vulnerability management processes, documentation, and guidelines.
• Enhance incident management playbooks, processes, procedures, runbooks, and supporting tools.
• Develop and coordinate vulnerability management strategy, mitigation, and remediation activities.
• Provide consultancy and support to other IT functions on IT security matters for standard infrastructure and OT environments.