Incident Management Specialist (m/f/d)

SRLabs is home to knowledge leaders securing critical infrastructures in finance, energy, and telecommunications. We focus on hands‑on hacking resilience – not compliance – combining our research with impactful consulting work for innovation leaders passionate about cutting‑edge technologies.

Our team brings together experts from across the world, with skills spanning coding, reverse engineering, penetration testing, exploit scripting, process design, research, and consulting. This diversity empowers us to influence the design and defense strategies of large‑scale organizations.

We are expanding our Defensive Capabilities and looking for experienced Incident Management Consultants to strengthen our team, driving security evolution through incident response, research, and technical consulting.

• A diverse, highly skilled team of cybersecurity experts
• Work that has real impact on critical infrastructures
• A culture of learning, collaboration, and innovation
• Flexible home office policy
• Annual company retreat
• Urban Sports Club membership
• Deutschlandticket (public transport)
• 30 days of paid vacation

As an Incident Management Specialist, you will help organizations detect, analyze, and respond to cyber incidents in complex environments. You’ll work closely with SRLabs’ hackers, researchers, and consultants to investigate attacks, contain threats, and guide clients toward long‑term resilience.

• Handle incident management activities from detection to remediation and post‑incident analysis
• Conduct technical investigations such as log correlation, forensic analysis, threat hunting, or compromise assessments
• Support clients in improving their detection and response capabilities, including SIEM and SOC architecture design and use case development
• Develop and deliver incident response playbooks, tabletop exercises, and training sessions for clients
• Provide strategic and technical recommendations to strengthen clients’ defensive posture
• Collaborate with SRLabs’ internal teams to integrate offensive insights into defensive solutions
• Produce clear, high-quality technical reports and briefings tailored for both technical and executive stakeholders
• Contribute to research and continuous learning, staying ahead of evolving attack techniques and response methodologies

• 3+ years of experience in Incident Management or Incident Response, ideally within consulting.
• Expertise in at least two technical topics (incident management, incident response, digital forensics, threat intelligence, threat hunting, threat research, incident remediation, vulnerability management, cloud security, security architecture, SIEM, SOC, SOARs, ...)
• Strong analytical and problem‑solving mindset, able to think clearly under pressure
• Excellent communication skills and confidence in interacting with clients during and after incidents
• Curiosity to learn and share knowledge within a team of experts
• Excellent command of English (German is a strong plus)

We are looking forward to getting to know you and discuss the opportunity. We value diversity and encourage candidates from all backgrounds – especially those from underrepresented groups in IT security.