Lead Cyber Threat Responder
This role is crucial in safeguarding our information systems against cyber security threats. You will be at the forefront of defending against sophisticated and high-priority threats, including those of unknown nature or with new techniques. Your expertise will help us continuously improve our response plan, processes, and playbooks.
What you'll do
- As a subject matter expert, lead and manage end-to-end responses to complex, high-priority threats like APTs, malware outbreaks, data leaks, and organized cybercrime.
- Take charge of escalated threats, defining and implementing containment strategies and driving incidents to resolution.
- You will participate in post incident analysis and recommend adjustments and changes to improve organization’s resiliency for modern threats and attacks.
- Communicate regularly with system owners, tech leaders, business users and managers.
- Advise, supervise and refine cybersecurity threat response playbooks for known threats, optimizing playbooks created by less experiences staff to enhance effectiveness.
- Collaborate with Threat Intelligence Analysts to guide responses based on threat intelligence data, with Threat Hunting Specialist to investigate suspicious or anomalous activities and with Threat Detection Engineer to optimize the detections.
- Activate and participate or lead CSIRT (Cyber Crisis Team) activities for high-priority threats, ensuring effective communication with all relevant stakeholders and coordination of technical activities withing Incident Response field.
- Continuously enhance threat response plans, processes and procedures, while providing supervision and development opportunities for junior team members.
Who you are
- You have in-depth knowledge of common threats, attack vectors, and TTPs, and you are well-versed in security tools such as SIEM, SOAR, EDR and NDR.
- You excel at analyzing complex situations and solving problems efficiently. You can also explain technical terms to non-technical staff.
- You have experience in digital forensics, network forensics, or malware analysis, and you can define and execute complex containment, eradication, and recovery strategies.
- You understand log formats for common security events and can use them to determine root causes and timelines.
- You have understanding of systems administration, middleware, application administration, and network security, including best practices.
- You can work effectively under pressure, adhere to processes and procedures, and thrive in an international, multicultural organization with English as the primary communication language.
- You hold a Bachelor’s degree and/or equivalent experience (4-6 years) in cybersecurity or IT. You have a successful track record in key technical roles and possess one or more security professional certifications (e.g., GCIH, GCFA, GREM, CISSP).
WE.YOU.TOGETHER.
- Security: Permanent employment contract in a stable, successful family-owned business
- Flexibility: time window for flexible working and weekly home office days
- Fitness and health: Discounts on various sports and leisure activities, active health promotion, private health care, occupational safety, and more
-
Feel Welcome: Welcome days and individual onboarding, company and team events
- Personal career and career development: Individual support for extra-occupational studies, further education and training courses
- Inspiring work environment: Our nicely designed office offers you an environment that fosters creativity and productivity. We love coming together as a team here!
We all shape our lives in our own way. As an employer, we are an important part that indirectly supports this with a wide range of offers, as well as providing security and reliability for all employees. This includes, among other things:
Knauf as an employer
Knauf is an international market leader in the building materials' industry. About 42.500 employees at over 300 locations worldwide generate a turnover of over 15,6 billion euros. The foundation of our success as family business are our corporate values of humanity, partnership, commitment and entrepreneurial spirit. As a subsidiary, Knauf IT has the mandate to drive commercial excellence through digitalization for all companies of the Knauf Group globally. Our mission is to rethink what it means to provide value to our customers and thereby drive growth for our businesses around the world.
The Knauf Group is a proud equal opportunities employer. We are committed to a diverse and inclusive working environment and therefore base all our employment selection decisions, within all aspects of our business, on experience, skill, and integrity. We strongly encourage applicants from all walks of life to apply for our positions, irrespective of age, sex, gender identity, disability, sexual orientation, origin, religion, etc.
- Department
- Cyber Security & Privacy
- Locations
- Poland - Katowice (IT Service Center)
- Remote status
- Hybrid Remote
- Employment type
- Full-time
Poland - Katowice (IT Service Center)
Workplace & Culture
(Click below to explore more)
About Knauf IT
Knauf IT is a driving force behind the global growth and digital transformation of the family-owned Knauf Group, one of the world's leading manufacturers of building materials. More than 500 experts at Knauf IT are supporting 42,500 employees and the customers of the Knauf Group with modern IT solutions and services at over 300 locations worldwide. Our corporate values of humanity, partnership, commitment and entrepreneurial spirit form the basis for the successful growth to more than 15,6 billion Euro annual sales.
Lead Cyber Threat Responder
Loading application form