Cyber Security Analyst

We are Covestro. We are curious. We are courageous. We are colorful. We refine chemical material solutions with game-changing products. Let us empower you to push boundaries. Join us and our 18,000 colleagues now and together we will make the world a brighter place.

The global Cyber Defense Team at Covestro is looking for an experienced Cyber Security Analyst to join a matrixed organization that has its leadership in Germany. The team is organized into different areas of responsibility (e.g., endpoint security, cloud security, incident response) and each employee is independently responsible for the assigned sub-area. Team members are expected to collaborate and support each other's areas and also assist in monitoring and responding to the security events generated by those systems. The focus of this position is to act as subject matter expert for the Covestro Cyber Defense Incident Response program and to drive the continuous improvement of the security monitoring for business critical and internet facing systems. Position is based in US (Pittsburgh), but responsibilities are global and include collaboration with Europe/Asia. Overseas travel may be required.

Major Tasks and Responsibilities

• Supervise as subject matter expert parts of the Cyber Defense Incident Response program
• Sitting in in the driver seat to improve use cases for business critical and internet facing systems based on pen test results
• Test the accuracy of the developed alarms; conduct long-term analysis of triggered alerts
• Fluency in our SIEM systems (Splunk, Crowdstrike NG SIEM or Sentinel) with ability to understand all the inputs/data sources
• Monitor systems: significantly increase the degree of automation so that triage and initial processing of security alarms from the security analytics systems are automated as far as possible
• Establish and control the efficient interaction of the various cloud-based security analytics systems
• Define, implement and control the service provider (MSSP, Managed Security Service Provider) in regular operation
• In-depth analyses of all kind of security data must be defined and implemented.
• Supervise as subject matter expert all automatic response activities and liaise with the customer groups

Basic Qualifications

• Bachelor's degree in computer science or closely related area with at least 4 years of IT security SOC experience or direct professional experience in IT security field

Preferred Qualifications

• Minimum of one relevant certificate (like Certified Incident Handler etc.)

Knowledge and Skills

• Motivated and analytical self-starter who can manage projects, report and stay organized.
• Hands on experience in SOC or CERT.
• Basic knowledge of security processes (port-mapping, vulnerability identification and remediation, anomaly detection), platforms (networking, firewalls, proxies, cloud and LAN/WAN), risk categorization frameworks (NIST, ISO, IEC).
• Scripting experience (Python, PowerShell, regex etc.)
• Hands on experience in the creation of use cases for SIEM systems.
• Hands on experience in analyzing SIEM/EDR data sets.

YOUR APPLICATION

Are you as curious, courageous and colorful as we are? If so, we can offer you an exciting career opportunity. We look forward to receiving your application and resume. Become part of our team - apply now!

Contact Us