The global Cyber Defense Team at Covestro is looking for a Junior Cyber Security Analyst to join a matrixed organization that has its leadership in Germany.
The team is organized into different areas of responsibility (e.g., endpoint security, cloud security, monitoring systems) and each employee is independently responsible for the assigned sub-area.
Team members are expected to collaborate and support each other’s areas and also assist in monitoring and responding to the security events generated by those systems.
The focus of this position is to help build automation and continuous improvement of the security processes in interaction with the company and its service providers, and to explore the potential of AI for the use in making security / risk decisions.
Position is based in US (Pittsburgh), but responsibilities are global and include collaboration with Europe / Asia. Overseas travel may be required.
Major Tasks and Responsibilities
- Analyze the performance of our security use cases (frequency and accuracy) and compare those to the response.
- Improve automation and SOC / CSIRT processes.
- Test the accuracy of the alarms; conduct long-term analysis of triggered alerts.
- Monitor systems : significantly increase the degree of automation so that triage and initial processing of security alarms from the security analytics systems are automated as far as possible.
- Establish and control the efficient interaction of the various cloud-based security analytics systems.
- In-depth analyses of all security data must be supported.
- Automate response activities must be planned and implemented. The possibilities of TI and AI for decision-making are to be used.
WHAT YOU OFFER
Basic Qualifications
Bachelor’s degree in computer science or closely related field with a minimum of 1 year of experience.
Preferred Qualifications
- 2 years of IT security SOC experience or direct professional experience in IT security field
- Relevant certificate (like Certified Incident Handler etc.)
- Hands on experience in SOC or CERT
Knowledge and Skills
- Motivated and analytical self-starter who can manage projects, report and stay organized.
- Basic knowledge of security processes (port-mapping, vulnerability identification and remediation, anomaly detection), platforms (networking, firewalls, proxies, cloud and LAN / WAN), risk categorization frameworks (NIST, ISO, IEC)
- Scripting experience (Python, PowerShell, regex etc.)
- Hands on experience in analyzing SIEM / EDR data sets.
- International travel required
LI-Hybrid