Security Operations Engineer – Germany

Job description details

Intro

At Hornetsecurity, we’re all about keeping the digital world safe — and we’re growing fast. If you love diving deep into threats, automating security workflows, and being the person who spots the thing nobody else noticed, then you might be exactly who we’re looking for.

Join our team in Hannover (List) as a Security Operations Engineer (m/f/d) and help us push cloud security forward.

Your Job

• You monitor SIEM/EDR alerts and prioritize incidents.
• You investigate and respond to security events and perform forensic analyses.
• You collect and operationalize threat intelligence into detection tools and workflows.
• You conduct OSINT investigations and proactive threat hunting (MITRE ATT&CK).
• You automate and evolve security workflows and ensure compliance with ISO 27001/NIST.
• You produce detailed incident and forensic reports.
• You collaborate closely with SOC, IT, and DevOps teams to embed security and best practices into operations and projects.
• You manage vulnerabilities by performing scans, tracking remediation, and enforcing system hardening.
• You conduct technology watch activities within your scope of expertise.

Your Profile

• You hold a Master’s degree or engineering diploma in IT, computer science, or cybersecurity.
• You bring around 3 years of relevant professional experience.

Must-Have Skills & Qualifications:

• First experience in auditing technical systems (configuration, architecture…).
• Knowledge of security standards (ISO, NIST, etc.) and development methodologies (DevSecOps, Agile).
• Understanding of risks, vulnerabilities, and flaws.
• Understanding of technologies and architectures used in business environments.
• Strong technical writing skills and the ability to explain complex topics clearly.
• Rigor, communication, and organizational skills.
• Proactiveness and a solution-oriented mindset.
• Strong command of written and spoken English and German/French; additional languages are a plus.

Nice-to-Have Skills:

• Any SANS certification in cybersecurity.
• Ethical hacker certification.
• ITIL V4 Foundation level.
• ISO 27001 Foundation.
• Familiarity with NIST / CIS control matrix.

Technology / Tools Knowledge:

• Atlassian, GitLab, Grafana API programming and related technologies.
• SOC, SIEM, SOAR platforms and EDR solutions.
• Digital forensics tools (EnCase, FTK, Autopsy).
• Threat intelligence platforms (MISP, ThreatConnect).
• OSINT tools (Maltego, SpiderFoot).
• Threat hunting methodologies and familiarity with MITRE ATT&CK / MITRE D3f3NS3.
• Scripting languages: Python, PowerShell, Bash.
• Cloud security (AWS, Azure) and IAM.
• Knowledge of network protocols and packet analysis.

Your Benefits

• Be part of a growing global company in one of the most dynamic industries — cybersecurity.
• Short decision paths and flat hierarchies in an open working atmosphere.
• Personal and professional development opportunities.
• Unlimited contracts — we’re looking for hornets to grow long-term with us.
• Temporary Employee Exchange Program – opportunity to work at our global office locations (e.g. Malta, Madrid, Montréal, Washington D.C.).
• Home-office option (hybrid) and flexible, trust-based working time.
• Team events like Laser Tag, Escape Rooms, or nights out together.
• Be-Active Bonus — allowance for membership in fitness and sports clubs.
• Referral Bonus — 1500€ for each successful referral.