Security Incident Response Analyst

This Cyber Security Incident Response Analyst role is for a critical part of the growing Security Response team in Walldorf. Candidates in this role will respond to incidents escalated from various sources and will analyzing complex security events targeting customer and company applications, data and systems following both documented procedures as well as industry best practices and creative resolutions. Ideal candidates should be a creative problem solver and quick learner able to adapt quickly to the quickly evolving cybersecurity attack landscape. The candidate should be experienced in the areas of networking, client/server technologies, and knowledge of analyzing log files as well as working knowledge of application security methods with a focus on Data Protection and Privacy. Candidates in this role may also be required to follow the incident response plan and assist other SOC Incident Response Analysts when necessary as well as helping design and plan improvements and solutions to better protect and respond to future attacks. Must display enthusiasm and interest in Information Security and be an excellent communicator capable of both independent work as well as working cross team situations.

Standard Job Requirements

• Provide second and third level investigation of security events
• Provide communication and escalation throughout the incident per the Triage guidelines
• Communicates directly with data asset owners and business response plan owners during high severity events
• Hunting for suspicious anomalous activity based on data alerts or data outputs from various toolsets
• Perform analysis of log files, asset data and other threat and alert information
• Takes an active part in the containment of events of interest, even after they are escalated
• Escalating issues when necessary

• Two years relevant experience in Cybersecurity
• Degree with focus in Cybersecurity or equivalent experience

Technical Competencies

• Knowledge of network and security technologies such as, SIEM, Firewall, WAF, and other related technology
• Knowledge of networking and application communication formats and SIEM technologies and how to utilize that data for traceability back to event source
• Knowledge of data analysis techniques
• Experience with Ticket management systems, issue tracking and escalation
• Experience with Security Assessment tools and use of their output
• Ability to make information security risk determinations
• Effective verbal and written communication skills and ability to work in diverse widely distributed team and work in an on-call environment

At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging - but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed., SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best. We win with inclusion SAP's culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone - regardless of background - feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better world. SAP is committed to the values of Equal Employment Opportunity and provides accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com. For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training. AI Usage in the Recruitment Process For information on the responsible use of AI in our recruitment process, please refer to our Guidelines for Ethical Usage of AI in the Recruiting Process. Please note that any violation of these guidelines may result in disqualification from the hiring process.