Threat Intelligence (Senior Business Expert)

Threat Intelligence Expert Frankfurt  We are seeking a Threat Intelligence Business Expert to join the Cyber Security Division of a leading financial service provider in Frankfurt. You will be responsible for delivering high-quality intelligence products, engaging with internal security teams, and contributing to the company’s intelligence-led security posture across a fast-moving and complex threat environment. Key Responsibilities  Produce tactical, operational, and strategic threat intelligence products for technical and non-technical audiences including SOC, Incident Response, Risk, and senior management. Analyse threat actor activity targeting the financial sector Manage and optimise threat intelligence feeds and platforms, supporting integration with SIEM and SOAR tooling. Engage with internal stakeholders across Vulnerability Management, Red Team, and Compliance to ensure intelligence drives operational outcomes. Support DORA-aligned ICT risk reporting and contribute to the continuous improvement of intelligence processes and workflows. Key Requirements  5–7 years of cyber security experience Strong knowledge of the threat landscape relevant to financial institutions, including e-crime, ransomware, fraud, and account takeover. Proficiency with the MITRE ATT&CK framework and structured analytic techniques. Awareness of DORA and BaFin regulatory expectations for cybersecurity within EU financial institutions. Relevant certifications desirable: CREST CTIA, GIAC GCTI (FOR578), or equivalent. Fluent in both German and English  

Technical Vulnerability Management Expert | Germany Our client is a major European bank looking for a Technical Vulnerability Management Expert to join their growing Cyber Hygiene function. This is a hands-on technical role with end-to-end ownership of vulnerability management topics, working closely with internal stakeholders across the organisation. The role is based in Germany with quarterly travel to a European office. Key Responsibilities Own and drive technical vulnerability management topics end-to-end. Define and establish clear technical interfaces across internal workstreams. Analyse and interpret vulnerability reports and translate findings into actionable recommendations. Support system hardening and patch management processes. Collaborate with and onboard new technical domains into the vulnerability management framework. Drive requirements engineering in an agile environment. Coordinate small-scale technical projects across internal and external stakeholders. Your Profile Deep technical expertise in vulnerability management, ideally including system hardening and patch management. Strong understanding of open-source vulnerability tooling and CVE analysis. Familiarity with regulatory requirements relevant to vulnerability management. Able to communicate technical topics clearly to both technical teams and management. Comfortable working independently in a build-out environment. Experience in agile working methods and requirements engineering. Fluent German and English.

Cyber Security Analyst Location: Stuttgart A role that inspires you Join a Cyber Security Operations team protecting modern cloud infrastructures in complex, international environments. As a Cyber Security Analyst, you will focus on advanced detection and response, helping to identify, contain, and prevent real cyber threats across critical systems. Key Responsibilities: Monitor and analyse security alerts in a 24/7 SOC environment, including on-call rotations (Tier 1/2). Perform incident triage and validation using logs, telemetry, and contextual data. Escalate confirmed or high-risk incidents to Tier 3 / Incident Response teams. Support forensic investigations, root-cause analyses, and containment activities. Develop, test, and refine detection rules and use cases aligned with MITRE ATT&CK. Participate in threat hunting and purple team activities. Develop and improve playbooks, runbooks, and cloud-specific response processes. Create dashboards and KPIs, analyse trends, and derive improvements from lessons learned. Your Profile: Degree in computer science, IT security, or a comparable qualification, or equivalent practical experience. 2–4 years’ experience in a SOC or cyber security operations environment. Hands-on experience in alert triage, incident response support, and detection rule development. Scripting skills in Python, PowerShell, or Bash. Strong knowledge of cloud security (Azure, AWS, or GCP) and container technologies (Docker, Kubernetes). Solid understanding of networking, Linux, and common security controls. Experience with SIEM platforms and threat intelligence tools. Willingness to travel and participate in on-call duties. Very good German and English skills. Security clearance (SÜ2) or willingness to obtain it. What’s on Offer? A hands-on role in modern cyber security operations. Exposure to real-world threats in cloud-based environments. Competitive remuneration and modern working conditions. Flexible working arrangements, including mobile working options.

Senior Manager SOC Location: Munich (Hybrid) A role that inspires you Join a global expert team dedicated to driving secure digital transformation through advanced cyber defence strategies. As Cyber Security Manager, you will advise international clients on SOC/SIEM operations and threat intelligence to strengthen their IT security and resilience. What you’ll be doing Lead the design, implementation, and operation of SIEM and SOC infrastructures for diverse clients. Utilise cutting-edge technologies such as Splunk, Exabeam, or IBM QRadar to enhance cybersecurity posture. Develop and deploy SIEM use cases, dashboards, and reports based on thorough threat analyses. Plan and refine cyber incident response procedures, analysing network logs to shape security policies. Collaborate with international teams in consulting and managed services to improve clients’ cyber defence capabilities. What you bring Degree in computer science, information technology, engineering, mathematics, or related field. Relevant experience with Cyber Defence tools (SOAR, Security Analytics, Threat Intelligence) and managed security services. Proficient with at least one SIEM platform such as Splunk, IBM QRadar, or Exabeam. Strong commitment, autonomy, and agile working style, with enthusiasm for complex projects in interdisciplinary, international teams. Fluent German and English communication skills, comfortable presenting to senior stakeholders. Willingness to travel. What’s on offer Join a high-impact, global cybersecurity team. Work on cutting-edge projects with leading-edge tools and methods. Collaborate within diverse, international teams. Flexible working arrangements.