Cyber Defence Consultant – SIEM
Location: Frankfurt
Our client is seeking a Cyber Defence Consultant - SIEM to join their team. As part of our Security Operations Centre (SOC), you will contribute to developing and enhancing detection strategies and monitoring capabilities.
Responsibilities:
* Supporting the full SOC lifecycle from planning and designing infrastructure and applications, to developing and implementing detection use cases within a security environment based on Microsoft technologies.
* Designing and building dashboards for advanced analytics using data from applications, systems, and security logs.
* Integrating the SIEM platform into existing infrastructure and operational workflows.
* Overseeing and continuously improving SIEM processes and use cases in collaboration with external service providers.
Requirements:
* A completed degree in computer science, business informatics, or a comparable technical qualification, ideally with a specialisation in IT security.
* Several years of hands-on experience with SIEM technologies (preferably Microsoft Sentinel and Microsoft Defender) for detecting cyber threats.
* Strong technical understanding of system vulnerabilities and defence mechanisms, especially in network security (e.g., firewalls, IDS/IPS, proxies, WAF, VPN, DNS).
* Solid experience with critical infrastructure components such as Active Directory, LDAP, Exchange/email systems, and web servers.
* Familiarity with relevant security standards and frameworks (e.g., ISO/IEC 27001, ISO 27035, NIST CSF), including compliance-oriented management of external service providers.
* Comfortable working in cross-functional teams and engaging with both internal stakeholders and external partners.
* A proactive approach to learning and a willingness to take ownership of cybersecurity initiatives related to protecting sensitive data and systems.