Match score not available

Senior Cyber Security Engineer - Defence (d/f/m) at Solaris

extra holidays - extra parental leave - work from anywhere
Remote: 
Hybrid
Contract: 
Experience: 
Senior (5-10 years)
Work from: 
Berlin (DE)

Offer summary

Qualifications:

At least 3 years of practical cybersecurity experience, Certifications related to cybersecurity fields, Extensive knowledge in various security domains, Proficient in AWS cloud security practices, In-depth expertise in incident management systems.

Key responsabilities:

  • Monitor threats and defensive technologies
  • Support incident response with forensic analysis
  • Develop incident response tactics and playbooks
  • Refine SIEM rules for better detection
  • Conduct purple team exercises to test security
SolarisBank logo
SolarisBank Financial Services Scaleup https://www.solarisgroup.com/
501 - 1000 Employees
HQ: Berlin
See more SolarisBank offers

Job description

Solaris is a tech company with a full German banking license. Our Banking-as-a-Service platform enables businesses to offer their own financial products. With our straightforward APIs, our partners can access and integrate a wide range of solutions such as digital banking, payments, cards, identification and lending services. As a market leader we are driven by bringing transformational change to the financial services industry.

We love what we do and we love our team. We are 700+ people from over 70 nationalities - a unique blend of techies, fintech enthusiasts, bankers and entrepreneurs from various industries. Our routines are built around genuinely valuing and exchanging different perspectives as well as actively sharing knowledge as we drive our business as a team. We believe and invest in personal growth.

Your Future Team
Your Role
  • Proactively monitors emerging threats and cutting-edge defensive technologies to strengthen and enhance security measures and responses.
  • Supports incident response efforts through in-depth forensic analysis, malware reverse engineering, and threat hunting to effectively neutralize security threats.
  • Develops and refines incident response tactics, including advanced playbooks and SOAR capabilities, ensuring streamlined and effective security operations.
  • Plays a crucial role in detection engineering, constantly refining SIEM rules and dashboards to improve detection accuracy and reliability.
  • Oversees comprehensive purple team exercises to thoroughly test and validate the effectiveness of security protocols against potential attacks.
  • Fine-tunes alerting systems to reduce false positives and ensure all security alerts are precise and actionable.
  • Clearly communicates complex security findings, recommendations, and strategies to all organizational levels, from technical teams to executive leadership, ensuring clarity and actionable insights.
  • Works with external partners to assess and integrate their insights following security incidents, enhancing the organization’s security practices.
We'd love to see 

Depending on your level of experience, your responsibilities and scope of role will range. We don’t care much about fancy titles, but rather about real personal and professional development, as laid out in our learning framework. Let’s figure together out how you can contribute to our team.

  • At least 3 years of practical cybersecurity, supported by relevant certifications.
  • Extensive knowledge in Network Security, Cloud Security, Vulnerability Management, System Hardening, Encryption, and Zero Trust architectures.
  • Proficient in implementing and managing AWS cloud security practices, understanding AWS-specific best practices and security controls.
  • Minimum of 2 years in an on-call role within a Cyber Defence Centre and/or CSIRT.
  • Well-versed in The MITRE ATT&CK framework, Cyber Kill Chain, and TTPs.
  • In-depth expertise in implementing and operating a variety of Incident management ticketing systems, SIEM platforms, SOAR tools, EDR and DLP solutions and WAFs;
  • Proficiency in scripting or software development, particularly or security automation.

 

Benefits 
  • We have a "remote-friendly" working arrangement
  • Home office budget
  • Learning & Development budget
  • Transparent framework to support your career goals
  • Competitive salary

While job ads usually paint an ideal picture of a candidate, studies show that most applicants meet an average of 60% of the criteria. Unfortunately, many promising candidates tend to apply only if they meet all the criteria. So if you think you have what it takes, but don't necessarily meet every single item in the job description, please contact us anyway. We'd love to talk with you and find out if you might be a good fit for us.

At Solaris, we are committed to nurturing an inclusive environment, where all Solarians feel valued, respected and supported. We are dedicated to building a diverse workforce that reflects the diversity of our communities. We are committed to equal employment opportunity regardless of color, ethnicity, religion, sex, origin, disability, marital status, citizenship, or gender identity. We are proud to be an equal opportunity workplace. If you have a disability or special need that requires accommodation, please let us know.

Information on data processing:


DE: https://www.solarisgroup.com/gdpr_notice_de
EN: https://www.solarisgroup.com/gdpr_notice_en

To all recruitment agencies: Solaris does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Solaris employees or any other venture in our ecosystem. Solaris is not responsible for any fees related to unsolicited resumes.

Required profile

Experience

Level of experience: Senior (5-10 years)
Industry :
Financial Services
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Verbal Communication Skills

Cybersecurity Engineer Related jobs