Information Security Professional (f/m/d) – Security Monitoring

Job Description

Knowledge for the world of tomorrow.

You are a true professional when it comes to thinking outside the box and identifying security risks before they arise. To be able to protect our IT systems even better, you ask questions to which there are no answers yet and look for gaps where hardly anyone suspects them. This is how digitization becomes possible in the first place! We encourage your ongoing training and exchange with helpful team members from all over the world. You decide whether you want to specialize or expand your knowledge in general. One thing is certain: your ideas will not disappear into a drawer, but will almost always be put into operational practice to jointly shape the world of tomorrow.

We implement what matters. That is your contribution. 
  • The Security Monitoring Team consists of experts with many years of experience and different areas of expertise, who contribute their expertise every day with passion and commitment in order to further increase the high security level of the data center. The Security Monitoring Team independently designs the use case and data analytics framework according to the needs and roadmap of the data center. As an experienced Cyber Defense expert you will strengthen the Security Monitoring Team of the SIEMENS High Security Data Center. 
  • You develop new and groundbreaking detections independently as well as together in the team and in cooperation with the key experts of the specialist departments in order to open up areas that have not yet been covered. Through creative and abstract thinking, you also solve demanding challenges and create use cases for previously unsolved cyber defense problems, from the initial idea to their productization. 
  • You will help build the security monitoring tools and workflows, also optimize it on code level, increase the automation level of the tooling and thus improve the efficiency of the team. You will analyze, point out and implement optimization potentials in automation. 
  • On a day-to-day operational basis, you will analyze security alerts, respond to cyber attacks, and initiate appropriate countermeasures. 
  • The existing security monitoring includes the global on premise infrastructure as well as the cloud environments and covers all relevant levels of a data center operation. To detect security incidents, you will use all available methods, from business logic rules, statistical analysis to the latest machine learning approaches or deep learning frameworks, implemented in any form such as single thread code, GPU-based kernels or dynamic container workloads. 
What you should be able to do. So that the world can do more. 
  • You have successfully completed a degree in computer science or another relevant discipline. Alternatively, you bring a comparable professional training as well as several years of relevant experience in securing and attack detection methods of IT high-security environments. 
  • You have many years of professional experience in the design and operation of security monitoring solutions and experience in on premise environments as well as cloud environments. 
  • You will bring the following expertise:
    - Demonstrated experience in handling cybersecurity incidents, root cause analysis, and implementation of mitigation and containment measures.  Several years of experience in developing use cases with Splunk
    - Web development skills with a focus on Splunk: JavaScript, ideally React or comparable frameworks.
    - Development skills: Python or comparable. Creation and use of REST API endpoints
    - Optional: experience in the use and implementation of Machine Learning, Deep Learning or AI techniques is a plus. 
  • Certification in incident handling (GCIH, GCIA, ECIH, CSIH) would be an advantage. 
  • You have already been able to demonstrate your leadership skills in project management during the implementation of IT security solutions. You are open to intercultural work in global teams. 
  • As part of the security support for the data center, proportional participation in our 24/7 on-call services is required. 
  • Very good written and spoken English skills complete your picture, good German skills would be an advantage. 

What we offer. 
  • 2 to 3 days of mobile working per week as a global standard
  • Attractive remuneration package
  • Development opportunities for both personal and professional growth 
  • 30 leave days and a variety of flexible working models that allow time off for yourself and your family 
  • Share matching programs to become a shareholder of Siemens AG
  • Find more benefits here

Individual benefits are adapted to meet local legal regulations, the requirements of different job profiles, locations, and individual preferences. 


Make your mark in our exciting world at Siemens.

As an equal-opportunity employer we are happy to consider applications from individuals with disabilities. - if you would like to find out more about jobs & careers at Siemens.

FAQ - if you need further information on the application process.

Organization: Information Technology

Company: Siemens AG

Experience Level: Experienced Professional

Full / Part time: Full-time

Can't find what you are looking for?