Airbus Defense and Space is looking for a passionate and talented Cyber Security *Detection Engineer *to join our international Incident Response Team (CSIRT), in *MANCHING.*
This is a technical, hands-on role that will work with a variety of security tools and technologies protecting our whole enterprise.
You will be responsible for technical evolution of our SOC blueprint and managing enhancement projects to integrate new features and solutions into our Security Operation Centers (SOC).
This is a fantastic opportunity to join a team who lives and breathes for cyber security and to work for a company with great products and technologies around the globe.
~ Your benefits**
~ Attractive salary and special payments
~30 days paid vacation and extra days-off for special occasions
~ Excellent upskilling opportunities and great international, group wide development prospects
~ Special benefits: employer-funded pension, employee stock options, discounted car leasing, special conditions for insurances, subsidies for public transport, employee benefits at cooperating companies
~ Medical officer for check-ups and other health-related services, canteen and cafeteria, kindergarten close to the site
~ Compatibility of family & work (job sharing, part-time models, flexible working hours, individual timeout)
~ Working in a diverse environment, with more than 140 nationalities, where every voice is heard
~ Leverage the organization’s CTI provider as a strategic asset*, not just a data source-integrating external intel with internal context to assess real impact and relevance
~ Conduct in-depth analysis of cyber threats (APT groups, malware campaigns, zero-days, etc.) Jupyter Notebooks or Python scripts)* that integrate threat intelligence, log sources, and detection logic-making them reusable by SOC, IR, and detection engineering teams
~Contribute in the specification of telemetry log sources and data normalization for its processing in Cyber Detection
~ Develop tools and techniques to identify patterns and anomalies in network traffic, system logs, and application data that could indicate security incidents (Threat Hunting)
~ Design and maintain workflows for the *rapid delivery of intelligence* to incident response and risk teams, enabling faster decision-making and containment
~ Support post-incident analysis by enriching forensic investigations with relevant threat intelligence context
~ Deep knowledge of Operating System insights (Windows/Linux)
~ Experience with Python is a requirement, PowerShell/Bash are a plus
~ Python, Jupyter Notebooks, PowerShell )
~ Fluent written and spoken in English and German are a must
Airbus supports your personal growth with customized development solutions.
Take your career to a new level and apply online now!
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
~ Permanent
~ Airbus is committed to achieving workforce diversity and creating an inclusive working environment. At Airbus, we support you to work, connect and collaborate more easily and flexibly.