(Senior) Security Analyst (m/f/x)

2 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from REWE International AG

Technical and IT Sourcer Expert @ REWE International AG

As the IT of the REWE Group Austria, we work together with our more than 700 employees to develop innovative IT products and services for all our corporate divisions in Austria and abroad, setting the tone for modern trade.

As part of our Security Operation Center, you will be responsible for the continuous monitoring and analysis of data provided by our Toolset and Platform used by the SOC. You’ll analyze, investigate relevant events, alerts, and information security incidents, providing insights to improve our security posture during post-incident analysis.

Job Description

• Respond to security incidents according to established policies and procedures.
• Provide guidance to first responders handling security incidents.
• Update stakeholders and decision makers with relevant information.
• Communicate findings to improve security posture.
• Maintain and validate incident response plans.
• Analyze data for management reporting.
• Stay updated on current threats by monitoring sources like news, social media, and information sharing centers.
• Assess the impact of new threats and develop use cases with security engineers.
• Participate in root-cause analysis and document findings.
• Create runbooks for recurring incidents.
• Develop new use cases to enhance capabilities.
• Onboard new data sources and systems to existing tools.
• Collaborate with infrastructure teams and colleagues.
• Support an open feedback and learning culture.
• Identify potential security risks and escalate as needed.

Qualifications

• 3+ to 8+ years of experience in a security analyst role or similar.
• Degree in computer science, information security, or related field, or equivalent training.
• Certifications like CISSP or GIAC are a plus.
• Experience in solving complex problems within corporate structures.
• Strong troubleshooting skills.
• Ability to work under pressure professionally.
• Independent analysis skills.
• Excellent communication skills.
• Decision-making abilities.
• Knowledge of SOC frameworks (Cyber Kill Chain, MITRE, etc.).
• Experience with SIEM, XDR, EDR, NDR, PAM solutions.
• Technical knowledge of products like Splunk, SentinelOne, Proofpoint, CyberArk is advantageous.
• Understanding of network security, VPN, firewalls, web servers, and Cloud security.
• OT and IoT knowledge is a plus.
• Scripting skills (Perl, Python, PowerShell).
• Responsibility, reliability, and professionalism.
• Good presentation and moderation skills.
• Entrepreneurial and analytical mindset.
• Proficiency in English; willingness to learn the local language.

Additional Information

• Long-term, varied work with a supportive team.
• Flexible hours, remote work options.
• Staff discounts, training opportunities, parking, lunch allowance.
• Salary from EUR 50,000, negotiable based on experience.

We welcome applicants from diverse backgrounds and encourage women to apply.