Head of Cyber Defence (*)
DB Schenker
Essen, North Rhine-Westphalia, Germany
vor 1 Tg.


In your role as Head of Cyber Defence, you will protect Schenker from cyber-attacks and develop appropriate measures for detecting, clearing, and defending against cyber threatsYou will support the Chief Information Security Officer, responsible for effective and efficient steering of Schenker's global IT-Security Management and -initiatives, programs, and services.

In this role, you are developing appropriate measures for detecting, clearing, and defending against cyber threats and thus make a valuable contribution to digitalization. Your tasks : SOC / SIEM

  • Take ownership and lead the development and maturity of the Security Operation Center and relations with other Information Security- and IT-teams
  • Further development of the Security Monitoring Toolstack (SIEM, Cloud Security Portals,...)
  • Further development of the SOAR Platform
  • Implement security measures to address cyber threats identified, e.g., defining SIEM use-cases and playbooks
  • Orchestrate and manage threat hunting exercises
  • Help to improve the SOC process excellence by maintaining information security documentation
  • Conduct computer forensic investigations by collecting, analyzing, and routing evidence and electronic discovery requests
  • Develop and maintain forensic methodologies, tools, and services
  • Information Security Incident Management and Crisis Management

  • Develop the Information Security Incident Process by leading and coordinating investigations with stakeholders and documenting incident reports
  • Operate the Information Security Incident Process by managing capabilities and response pro-cess by involving all relevant internal and external stakeholders
  • Ownership and maintenance of Schenker's Crisis Communications Playbook, IT-Crisis Manage-ment - and IT-Disaster Recovery program
  • Serve as the communications liaison to the company's cross-functional IT Crisis Response Team (CRT)
  • Provide senior-level counsel to Management during times of crisis
  • Regularly conduct business impact assessments, vulnerability assessments and develop contin-gency plans to address the most pressing potential scenarios
  • Schedule and manage annual crisis communications training for the IT Crisis Response Team
  • Management of relationships with corporate crisis communications teams
  • Act as subject matter expert on the use of crisis management tools and resources
  • Develop, manage, and train IT- personnel to maintain crisis policies and procedures
  • Implement, maintain, and regularly update program contact lists
  • Coordinate with Corporate Operations team on Incident Response where it affects business op-erations
  • Consult with IT-architects on scale and improvement of technology disaster recovery program
  • Prepare annual planning and testing calendar and budget
  • Develop and conduct awareness training and exercises for end-users on Crisis Planning and Dis-aster Recovery
  • Provide client-driven due diligence materials : test results, program summaries
  • Cyber Threat Intelligence (CTI)

  • Set and review constantly the mission of the Cyber Threat Intelligence Function at DB Schenker in close alignment with the Business, IT, and IT Security Strategy of DB Schenker
  • Define, implement, and maintain an outcome oriented Cyber Threat Intelligence Strategy for DB Schenker
  • Design, implement and maintain a DB Schenker Cyber Threat Framework to enable consistent characterization and categorization of cyber threat events, and to identify trends or changes in the activities of cyber adversaries
  • Implement, manage, and constantly improve a Cyber Threat Intelligence (CTI) function to devel-op evidence-based knowledge, including context, mechanisms, indicators, implications, and ac-tion-oriented advice about an existing or emerging menace or hazard to DB Schenker's IT and Information assets
  • Manage the selection, aggregation, and integration of relevant, reliable, and action-oriented Threat Intelligence Sources, to spot the threat actors and find out significant details, such as IoCs (Indicators of Compromise), compromised devices, and other data
  • Manage the actionable integration of relevant Threat Intelligence into the diverse protective and detective organizational functions and systems of DB Schenker
  • Qualifications Your profile :

  • Bachelor's and / or Master's degree in Engineering, IT, or Business Administration
  • University or comparable degree in Computer Science, Information Security, Engineering or re-lated discipline
  • Several years IT experience in an information security role
  • Previous experience in leading a globally distributed CERT or SOC team
  • Broad knowledge of IT and Information Security technologies, e.g., SIEM, threat intelligence, networks, operating systems, databases, and applications
  • Solid understanding of threats, vulnerabilities, and security controls
  • Deliverable-oriented, with strong problem-solving skills
  • Team player willing to cooperate with multiple colleagues across multiple office geo-locations and time zones
  • Good skills in report-writing and presentation on Top Management Level to present the findings of investigations
  • Proficiency in written and spoken English, German would be beneficial
  • Melde diesen Job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Klicke auf "Weiter", um unseren Datenschutz-und Nutzungsbestimmungen zuzustimmen . Du kriegst außerdem die besten Jobs als E-Mail-Alert. Los geht's!