CSIRT Analyst

Security Incidents can cause a severe business impact on the organization. They often involve ambiguity, complexity, and the need for off-playbook approaches and solutions to manage unprecedented problems. Flexibility, fast movement, and the ability to reduce complex situations to individual components to allow action-taking are key during such situations.

The CSIRT Analyst safeguards our digital assets and analyzes data to understand threats and respond appropriately to mitigate the damaging impact on the business. On complex incidents, they also coordinate task forces to drive our response and act as a primary point of contact for all parties involved.

Most of their time, they will work during core business hours but also regularly on-call outside of business hours and on weekends.

INCLUSIVE BY DESIGN

At Zalando, our vision is to be inclusive by design. And this vision starts with our hiring - we do not discriminate on the basis of gender identity, sexual orientation, personal expression, ethnicity, religious belief, or disability status. You are welcome to leave out your picture, age, or marital status from your application. We only assess candidates on their qualifications and merit.

We want to provide you with a great candidate experience. Feel free to inform us of any accommodations you may need, so we can best support you throughout the hiring process.

do.BETTER - our diversity & inclusion strategy: https://corporate.zalando.com/en/our-impact/dobetter-our-diversity-and-inclusion-strategy
Our employee resource groups: https://corporate.zalando.com/en/our-impact/our-employee-resource-groups

WHAT WE’D LOVE YOU TO DO (AND LOVE DOING)

• Drive Incident response activities together with a task force through the entire Security Incident Lifecycle;

• Coordinate the investigation activities of involved L1 CSIRT Analysts;

• Partner with engineering teams and other on-call staff to drive the investigation and response and facilitate swift decision-making;

• Interact with platform partners on 3rd party Incidents to evaluate the potential impact on Zalando;

• Steer stakeholder communication on the highest level, keeping stakeholders in a close loop and serving as the primary point of contact throughout the entire Incident Response Lifecycle;

• Writing forensic incident investigation reports;

• When not managing Incidents, you continuously improve our monitoring coverage, engage in proactive threat hunting, and curate our playbooks.

WE'D LOVE TO MEET YOU IF…

• You have 3+ years of working experience as a CSIRT Analyst;

• You have excellent communication skills, verbal and written, are experienced in writing forensic incident investigation reports, and have a proven track record for dealing with stakeholders;

• You can size up a situation, assess the effectiveness of various tactics, and make rapid decisions on appropriate courses of action on incidents;

• You have experience in security monitoring, detection, and analysis methodologies and technologies, including network-based intrusion detection systems, extended detection and response solutions (XDR), web application and network firewalls, and SIEM solutions;

• You can convince with working knowledge of protecting assets on AWS and working with Kubernetes on AWS. Preferably, you gained experience with AWS native security tools. Also, monitoring a Google Workspace environment is ideally part of your previous experience;

• You have gained an in-depth understanding of the MITRE ATT&CK Framework, the Cyber Kill Chain, and NIST.

OUR OFFER

Zalando provides a range of benefits, here’s an overview of what you can expect. Ask your Talent Acquisition Partner to learn more about what we offer.

• Employee shares program;
• 40% off fashion and beauty products sold and shipped by Zalando, 30% off Zalando Lounge, discounts from external partners;
• 2 paid volunteering days a year;
• Hybrid working model with up to 60% remote per week, actual practice is up to each team to best support their collaboration;
• Work from abroad for up to 30 working days a year;
• 27 days of vacation a year (for Zalando SE);
• Relocation assistance available (subject to prior agreement);
• Family services, including counseling and support;
• Health and wellbeing options (including Gympass);
• Mental health support and coaching available.

Learn all about Zalando and our values here: [https://jobs.zalando.com/en/?gh%5Fsrc=22377bdd1us>