Security Incident Manager - Senior Security Incident Responder (m/f/d)

The Senior Security Incident Responder (m / f / d) leads the investigation and resolution of high-severity cybersecurity incidents. They are the first line of defense during active attacks and play a vital role in incident lifecycle management—from detection to recovery and root cause analysis.

LOCATION :

Please note that the working location for this position will be in Madrid city centre, where we are currently setting up a new office. Until the office is fully operational within the next few months, you will have the possibility to work flexibly from home and continue with a hybrid working model afterwards. Once the office is ready, onsite presence will be required.

Creating passion : your responsibilities

• Incident Response: Coordinate and execute responses to security incidents, including containment, eradication, and support recovery efforts.
• Digital Forensics: Conduct investigations to analyze compromised systems, gather evidence, and determine the scope and impact of security incidents.
• Threat Analysis & Reporting: Correlate logs, alerts, and IOCs to identify root causes and attack paths. Create detailed incident reports, executive summaries, and conduct lessons-learned sessions with recommendations for preventive measures.
• Documentation: Maintain detailed records of response activities, findings, and lessons learned to support reviews and reporting.
• Collaboration: Work closely with SOC / CERT team members and cross-functional teams for comprehensive incident management.
• Monitoring and Detection: Monitor security alerts and events to identify potential incidents and escalate as needed.
• Continuous Improvement: Contribute to refining incident response processes, tools, and techniques based on experience and emerging threats.

Contributing your strengths : your qualifications

• Bachelor’s / Master’s degree in Cybersecurity, Computer Science, or related field
• 6+ years of experience in cybersecurity, preferably as a Security Incident Responder
• Proficiency with digital forensics tools and techniques (e.g., EZ Tools, Velociraptor, Autopsy)
• Hands-on knowledge of SIEM and security analytics tools (e.g., Microsoft Sentinel, Microsoft Defender XDR, Elastic SIEM)
• Experience in security incident handling, digital forensics, or related roles
• English proficiency is required; German and French are advantageous
• Understanding of cybersecurity frameworks and standards (e.g., ISO27001, NIST, GDPR)
• Strong analytical and problem-solving skills
• Certifications such as GIAC GCIH, GCFA, or cloud certifications (AWS, Azure, GCP) are a plus

Our commitment to you : your benefits

As an internationally successful family business, the Liebherr Group offers a secure job, diverse tasks, and growth opportunities. Join our team and enjoy these benefits:

• Attractive salary and social benefits
• Flexible and hybrid working arrangements
• Creative work environment
• Secure workplace
• Development and training opportunities
• Meal vouchers
• Life and accident insurance
• Premium private health insurance
• Bonus payments for Christmas and holidays, based on collective agreement

Please only apply online.

We do not accept applications via recruitment agencies for this position.