Lead Security Engineer (SOC) (m,f,x)

Berlin

Applications have closed

HelloFresh

Get started with America’s Most Popular Meal Kit! Enjoy fresh, delicious meal kits with easy recipes for tasty home-cooked meals delivered to your door weekly.

View all jobs at HelloFresh

The role

The Security Alliance is at the very core and in every corner of the organization, setting the strategy, direction to improve HelloFresh's security posture. This includes detection and response, vulnerability and risk management, cloud and IT security, compliance engineering, and more.

We’re looking for a new Lead Security Engineer to join us on the journey of keeping HelloFresh a trusted name - someone with a passion for security and appetite for new challenges.

This role aims to improve the HelloFresh Threat Detection & Response Program by maturing the tools, processes and playbooks to reduce dwell time and improve MTTD/R. 

What you’ll do

  • Technically lead the SecOps function at HelloFresh Group that is responsible for maturing security logging and monitoring of Cloud, IT and Infrastructure workloads across all business units
  • Strategising and roadmapping to improve how the team responds, analyses, and detects security intrusions by 
  • Realize the impact of the SOC team and collaboration across HelloTech by regular insights and reporting
  • Filter, ingest and optimize security-specific events from large log streams such as App logs, Kubernetes logs, CloudTrail, CloudFlare and ELB logs etc.
  • Conduct threat hunts against file-less malware and APTs by leveraging OS and network telemetry acquired through specialized open-source toolset like Sysmon, Osquery, RITA and Zeek
  • Develop advanced correlation and cross-correlation rules beyond what is available out of the box to detect sophisticated attacks and fraud cases
  • Generate security metrics and reporting on incidents and effectiveness of the SOC operation

This role will have an on-call rotation.

What you’ll bring

  • Proven security monitoring and incident response experience in public cloud environments
  • Performance-oriented people leading experience in a SOC/SecOps environment at scale, managing stakeholder expectations
  • Hands-on familiarity with cloud SIEM & SOAR platforms, DDoS mitigation and preventing tools and Layer-7 Web-based perimeter security controls
  • Solid understanding of network intrusion methods, network containment, segregation techniques and technologies such as Sandboxes and Intrusion Detection/Prevention Systems (ID/PS)
  • Programming (automation) skills with Python / Go will be a plus

What we offer

  • Comprehensive relocation assistance to move to Berlin plus visa application support
  • Healthy discount on weekly HelloFresh boxes
  • Annual learning and development budget to attend conferences or purchase educational resources plus access to the HelloFresh Academy
  • Subsidised childcare with a professional nannying agency
  • Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)
  • A diverse and vibrant international environment of 70+ different nationalities
  • Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighboring gym & Urban Sports Club, summer & winter parties, discount on our HelloFresh GO vending machines
  • The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase

What we offer

  • Comprehensive relocation assistance to move to Berlin plus visa application support
  • Healthy discount on weekly HelloFresh boxes
  • Subsidised childcare with a professional nannying agency
  • Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)
  • A diverse and vibrant international environment of 70+ different nationalities
  • Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighbouring gym & Urban Sports Club, company events and parties, discount on our Convini vending machines
  • The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase

Are you up for the challenge?

Please submit your complete application below including your salary expectations and earliest starting date.

After submitting an application our team will review this and get back to you within 5 business days. 

For insight into our interview process take a look at our recent post here

#Security

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Automation Cloud Cloudflare Compliance DDoS Incident response Intrusion detection Kubernetes Malware Monitoring Python Risk management SecOps SIEM SOAR SOC Strategy Threat detection

Perks/benefits: Career development Conferences Relocation support Team events Yoga

Region: Europe
Country: Germany

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.