Department: Information Security / Cybersecurity
The Incident Response Engineer will lead and execute advanced investigations, containment, and mitigation strategies for security incidents. This role involves performing forensic analysis, malware reverse engineering, developing response playbooks, and improving security operations to minimize the impact of cyber threats.

REQUIRED QUALIFICATIONS:

• Bachelor’s degree in Cybersecurity, Computer Science, or related field.
• Certifications (preferred): GCIH, GCFA, CISSP, OSCP, or equivalent.
• Experience in digital forensics, malware analysis, and SIEM platforms.
• Hands-on experience with security tools (EDR, IDS/IPS, firewalls, SOAR).
• Strong knowledge of network forensics, log analysis, and adversary TTPs.
• Proficiency in German language is preferred.

• Lead and respond to critical security incidents, containing threats efficiently.
• Perform forensic analysis on compromised systems and identify attack vectors.
• Conduct malware analysis to extract indicators of compromise (IOCs).
• Collaborate with Threat Intelligence teams to track adversary behaviors.
• Provide post-incident reporting, root cause analysis, and recommendations.
• Perform root cause analysis (RCA) and recommend mitigation strategies.
• Develop and implement incident response playbooks and workflows.
• Analyze malware, phishing campaigns, and advanced persistent threats (APTs).
• Improve security monitoring by fine-tuning detection rules and log analysis.
• Stay updated on emerging cyber threats, attack techniques, and security frameworks.