Security Operations Engineer – Germany

At Hornetsecurity, we’re all about keeping the digital world safe — and we’re growing fast. If you love diving deep into threats, automating security workflows, and being the person who spots the thing nobody else noticed, then you might be exactly who we’re looking for.

Join our team in Hannover (List) as a Security Operations Engineer (m/f/d) and help us push cloud security forward.

• You monitor SIEM/EDR alerts and prioritize incidents.
• You investigate and respond to security events and perform forensic analyses.
• You collect and operationalize threat intelligence into detection tools and workflows.
• You conduct OSINT investigations and proactive threat hunting (MITRE ATT&CK).
• You automate and evolve security workflows and ensure compliance with ISO 27001/NIST.
• You produce detailed incident and forensic reports.
• You collaborate closely with SOC, IT, and DevOps teams to embed security and best practices into operations and projects.
• You manage vulnerabilities by performing scans, tracking remediation, and enforcing system hardening.
• You conduct technology watch activities within your scope of expertise.

• You hold a Master’s degree or engineering diploma in IT, computer science, or cybersecurity.
• You bring around 3 years of relevant professional experience.

• First experience in auditing technical systems (configuration, architecture…)
• Knowledge of security standards (ISO, NIST, etc.) and development methodologies (DevSecOps, Agile).
• Understanding of risks, vulnerabilities, and flaws.
• Understanding of technologies and architectures used in business environments.
• Strong technical writing skills and the ability to explain complex topics clearly.
• Rigor, communication, and organizational skills.
• Proactiveness and a solution-oriented mindset.
• Strong command of written and spoken English and German/French; additional languages are a plus.

• Any SANS certification in cybersecurity.
• Ethical hacker certification.
• ISO 27001 Foundation.
• Familiarity with NIST/CIS control matrix.

• Atlassian, GitLab, Grafana API programming and related technologies.
• SOC, SIEM, SOAR platforms and EDR solutions.
• Digital forensics tools (EnCase, FTK, Autopsy).
• OSINT tools (Maltego, SpiderFoot).
• Threat hunting methodologies and familiarity with MITRE ATT&CK / MITRE D3f3NS3.
• Scripting languages: Python, PowerShell, Bash.
• Cloud security (AWS, Azure) and IAM.
• Knowledge of network protocols and packet analysis.

• Be part of a growing global company in one of the most dynamic industries — cybersecurity.
• Short decision paths and flat hierarchies in an open working atmosphere.
• Personal and professional development opportunities.
• Unlimited contracts — we’re looking for hornets to grow long-term with us.
• Temporary Employee Exchange Program – opportunity to work at our global office locations (e.g. Malta, Madrid, Montréal, Washington D.C.).
• Home‑office option (hybrid) and flexible, trust‑based working time.
• Team events like Laser Tag, Escape Rooms, or nights out together.
• Be‑Active Bonus — allowance for membership in fitness and sports clubs.
• Referral Bonus — €1,500 for each successful referral.