-
Respond to security incidents according to the security incident response policy and procedures
-
Communicate investigation findings to relevant stakeholders to help improve the information security posture
-
Monitor relevant information sources (such as specific technology related news, Twitter, LinkedIn and information sharing and analysis centers) to stay up to date on current attacks and trends
-
Analyze potential impact of new threats and establish new use cases together with our security platform engineers
-
Perform or participate in root-cause analysis to document findings, and participate in root-cause elimination activities as required
-
Create runbooks for frequently occurring incidents to automate or at least assist with the resolution of those cases
-
Assist in building, enhancing and expanding the SOC platform
-
Help creating an internal SOC service offering
-
Work in close partnership with our infrastructure teams, information security officer and colleagues from the REWE Digital SOC
-
Support an open feedback culture and a forward-looking error culture (learning organization)