Job Description
Overall Objectives of Job:
Manage and resolve Cyber security incidents, identify cyber threats and vulnerabilities, analyse security data to detect breaches, good understanding of cyber threat actors TTPs, defense strategies and support to develop threat hunting strategies to enhance Allianz Group's security.
Duties and Responsibilities
Lead and enhance incident response initiatives to improve security measures.
Detect and analyse attacks, identifying responsible actors.
Proactively hunt for threats and create detection queries.
Support digital forensic investigations and analyse various assets.
Perform log analysis to identify potential threats.
Work on SOAR cases, develop workflows, and coordinate for effective playbooks.
Contribute to complex investigations and examine evidence
Develop threat detection and response strategies.
Coordinate with stakeholders for effective service delivery.
Mentor junior colleagues and provide support.
Provide advanced cybersecurity expertise and recommendations.
Contribute to improving security monitoring and response processes.
Collaborate with teams to investigate and contain incidents.
Develop automation for response and remediation
Document and communicate incidents and remediation efforts.
Stay updated on cyber threats and security technologies.
Communicate effectively with clients and manage expectations.
Support audits and adhere to change management processes.
Collaborate with teams across Allianz businesses.
Qualification, Experience, Technical and Functional Skills
6-10+ years in Security Incident Response and Investigations
Strong understanding of operating systems, processes, and memory structures; experience in host and memory forensics on Windows, macOS, and Linux.
Experience with external and insider threat investigations.
Experience analysing network, email and host-based security incidents.
Familiar with attacker kill-chain, MITRE ATT&CK, and emerging threats.
Understanding and experience in cloud like Azure, AWS, GCP , GitHub and containers like Kubernetes is a plus.
Take key ownership and initiatives to protect Allianz
Strong grasp of network security, malware analysis, and security operations.
Familiarity with SIEM tools, EDR, DLP, file integrity technologies.
Excellent analytical, problem-solving, and communication skills.
Ability to thrive in a fast-paced, collaborative environment.
A fundamental grasp of AI tools will be an added benefit.
Allianz Group is one of the most trusted insurance and asset management companies in the world. Caring for our employees, their ambitions, dreams and challenges is what makes us a unique employer. We are united by a shared commitment: to put our customers first and at the center of everything we do. Their needs inspire our thinking and guide our actions. Together, we can build an environment where everyone feels empowered and confident to explore, grow and shape a better future – for our customers and for the world around us.
At Allianz, we stand for unity: we believe that a united world is a more prosperous world, and we are dedicated to consistently advocating for equal opportunities for all. The foundation for this is our inclusive workplace, where people and performance both matter, and where integrity, fairness, inclusion and trust are at the heart of our culture. We therefore welcome applications regardless of race, ethnicity or cultural background, age, gender, nationality, religion, social class, disability or sexual orientation, or any other characteristics protected under applicable local laws and regulations.
Great to have you on board. Let's care for tomorrow.
Note: Having different strengths, experiences, perspectives and approaches is an integral part of Allianz‘ company culture. One means to achieve this is a regular rotation of Allianz employees across functions, Allianz entities and geographies. Therefore, Allianz expects from its employees a general openness and a high motivation to regularly change positions and collect experiences across Allianz Group.