SIEM/SOC Lead (m/f/d)

HENSOLDT is a leading company in the European defence industry with global reach. Located in Taufkirchen near Munich, the company develops complete sensor solutions for defence and security applications. As a technology leader, HENSOLDT is driving the development of defence electronics and optronics and continuously expanding its portfolio on the basis of innovative approaches to data management, robotics and cyber security. Our products can be used in the areas of Space, Air, Land, Sea, Security, Cyber & Information Space. In 2023, HENSOLDT achieved sales of 1.85 billion euros. After the acquisition of ESG GmbH, the company employs about 8,500 employees. HENSOLDT is listed on the Frankfurt Stock Exchange in the MDAX. For the area ''Cyber Defence', we are looking for a location at Ulm, Immenstaad or Taufkirchen at the next possible time SIEM/SOC Lead (w/m/d) Cyber Defence is responsible for the protection of the organisation's digital assets through comprehensive threat information, continuous monitoring and rapid responses in incidents and forensic investigations. This team identifies, analyzes and mitigates proactive cyber threats and manages the attack area of the organization to reduce vulnerabilities. You work together across departments to ensure a robust security and resilience to developing cyber threats. As a ''SIEM/SOC Lead (w/m/d)' you are responsible for monitoring and controlling the activities related to the design, optimization and maintenance of the SIEM platform. Their focus is on improving the detection capabilities, ensuring effective threat detection and minimising false alarms at the same time.

Technical and operational management and responsibility for SIEM/SOC Head of development, refinement and implementation of detection rules to improve threat visibility Support for projects in the cyber defence department in cooperation with internal stakeholders to achieve a higher degree of maturity and security for the HENSOLDT organization Main responsibility for prioritizing the provision of recognition rules to minimize false positive SIEM warnings. Monitoring the connection and integration of log sources into the SIEM platform in close cooperation with MSSP to ensure seamless data acquisition Promoting the continuous improvement to identify threats taking into account new techniques and good practices Control of external providers, including managed security service providers (MSSPs), and ensuring that the services provided comply with the safety standards and objectives of the organisation. Strategic orientation and technical guidance of the Detection Team to increase the effectiveness of the SOC

University degree in Computer Science, Cyber Security or a similar field Long-standing experience in cyber security Strong analytical and problem-solving skills to evaluate cyber security issues in complex organizations and develop effective solutions Embossed capabilities for communication of recognition performance indicators to the leadership level Proven experience in program and stakeholder management

Flexible working hours & work-life balance Remuneration & social benefits Personal and professional development Working atmosphere Health and safety Mobility & Sustainability