Lead Cyber Threat Responder

Knauf stands for opportunity. This exciting role offers you the ideal opportunity to begin and further develop an impressive career within a values-driven culture.

As a global building materials manufacturer with 42,500 employees in 90 countries, we offer diverse opportunities to ambitious talent. We value every contribution and are committed to creating a safe and inclusive work environment with the aim of developing sustainable solutions for a better future.

Knauf Information Services GmbH is proud to be a part of the Knauf Group. With a long-standing tradition, and a growing international presence, we are seeking dedicated individuals to help us achieve our long-term vision.

Can you say ‘yes’?

• Is respectful and appreciative interaction within the team a given for you?
• Do you always put the customer at the center of your actions?
• Do you consider the future and upcoming generations in your actions?
• Do you strive for personal and professional growth?

What you'll do

• As a subject matter expert, lead and manage end-to-end responses to complex, high-priority threats like APTs, malware outbreaks, data leaks, and organized cybercrime.
• Take charge of escalated threats, defining and implementing containment strategies and driving incidents to resolution.
• You will participate in post incident analysis and recommend adjustments and changes to improve organization’s resiliency for modern threats and attacks.
• Communicate regularly with system owners, tech leaders, business users and managers.
• Advise, supervise and refine cybersecurity threat response playbooks for known threats, optimizing playbooks created by less experiences staff to enhance effectiveness.
• Collaborate with Threat Intelligence Analysts to guide responses based on threat intelligence data, with Threat Hunting Specialist to investigate suspicious or anomalous activities and with Threat Detection Engineer to optimize the detections.
• Activate and participate or lead CSIRT (Cyber Crisis Team) activities for high-priority threats, ensuring effective communication with all relevant stakeholders and coordination of technical activities withing Incident Response field.
• Continuously enhance threat response plans, processes and procedures, while providing supervision and development opportunities for junior team members.

Who you are

• You have in-depth knowledge of common threats, attack vectors, and TTPs, and you are well-versed in security tools such as SIEM, SOAR, EDR and NDR.
• You excel at analyzing complex situations and solving problems efficiently. You can also explain technical terms to non-technical staff.
• You have experience in digital forensics, network forensics, or malware analysis, and you can define and execute complex containment, eradication, and recovery strategies.
• You understand log formats for common security events and can use them to determine root causes and timelines.
• You have understanding of systems administration, middleware, application administration, and network security, including best practices.
• You can work effectively under pressure, adhere to processes and procedures, and thrive in an international, multicultural organization with English as the primary communication language.
• You hold a Bachelor’s degree and/or equivalent experience (4-6 years) in cybersecurity or IT. You have a successful track record in key technical roles and possess one or more security professional certifications (e.g., GCIH, GCFA, GREM, CISSP).

What we offer you

We all shape our lives individually. As an employer, we play a significant role in the daily life of our employees and aim to support them with various offerings. This includes, among other things:

• Security: Permanent employment contract in a stable, successful family-owned company.
• Flexibility: 30 days of vacation, special leave for certain occasions, flexitime account with a broad time window for flexible working and weekly home office days.
• Fitness and health: Discounts on various sports and leisure activities (e.g., fitness studio Iphofen, swimming training, soccer, etc.), as well as opportunities for active health promotion through our company doctor and occupational health and safety offers.
• Daily time savings: Ample parking and direct access to public transport from the company premises (train, bus).
• Future planning: Subsidies for capital-forming benefits and offers for company pension schemes.
• Welcome approach: Individual onboarding days, company and team events, subsidized company canteen and our Barista coffee bar.
• Career and professional development: Individual support and promotion for part-time studies, further education and training.
• Benefits and vouchers: Discounts on well-known brands and reduced-price employee purchases.
• E-Bike leasing: Using tax advantages while promoting your own health.
• Relocation support: Assistance with international relocation

 

Knauf as an employer

Knauf Information Services GmbH, headquartered in Kitzingen, Germany, is a key driver of the KNAUF Group's global growth and digital transformation. A team of 500 highly qualified experts is committed to supporting the Group and its customers worldwide with innovative IT solutions and customized services. The core competencies of Knauf IT cover a wide range of IT services, including the development and implementation of complex software solutions, the optimization of business processes through digital technologies and ensuring IT security and data protection.

The Knauf Group is proud to be an equal opportunity employer. We are committed to a diverse and inclusive work environment, and we make all personnel decisions across all areas of our company based on experience, skills and integrity. We encourage applicants from all walks of life to apply for our positions, regardless of age, gender, gender identity, disability, sexual orientation, origin, religion and so forth.

Share our values and become part of the team to shape the future of Knauf together. 

---