SOC Engineer | SOC Engineer (m/w/d)
abtis GmbH
Job Summary
This role is for a SOC Engineer responsible for designing, operating, and integrating SOC infrastructure. Key responsibilities include working with central components like SIEM (e.g., Microsoft Sentinel), SOAR, EDR/NDR, and IDS/IPS, ensuring high availability and data integrity. The engineer will automate processes using CI/CD pipelines and Infrastructure as Code, developing SOC workflows, detection rules, and playbooks with tools like Bicep and GitHub Actions. A core part of the job involves developing and maintaining detection use cases based on MITRE ATT&CK, integrating Threat Intelligence data using MISP, TAXII, or OpenCTI, and adhering to DevSecOps principles. This position is ideal for someone passionate about IT security and eager to work with modern security solutions.
Required Skills
Education
Not specified
Experience
- Practical experience with PowerShell or Python
- Professional experience with REST-APIs
- Basic knowledge of query languages like KQL or SQL
- Experience with Git for version control
Languages
Additional
- Not specified