You’re an important part of our future. Hopefully, we're also a part of yours! At B. Braun, we protect and improve the health of people worldwide. This is also our vision for IT. You see technology as an opportunity, and you develop solutions that secure our business in the long term, we would like to implement the digital transformation of B. Braun with you. With fresh ideas, drive and team spirit, we are working to launch the medical technology of tomorrow and safeguard the healthcare of the future. Together.

That's Sharing Expertise.

Job Description

As a Security Analyst in our CDC (Cyber Defense Center) Department, you will play a crucial role in safeguarding our organization’s digital assets. Your responsibilities will span various aspects of cybersecurity, including threat detection, incident response, and vulnerability management. You’ll collaborate with cross-functional teams to enhance B.Braun’s security posture and ensure compliance with industry standards.

Key Tasks and Responsibilities

Security Monitoring

• Monitor security alerts and events across SIEM, IDS/IPS, firewalls, and endpoint protection platforms.
• Investigate and analyze suspicious activities, anomalies, and potential threats.
• Continuously improve detection rules.

Incident Response

• Triage and investigate security incidents to determine root cause and impact.
• Respond to security incidents promptly and effectively.
• Automated and/or coordinate incident handling, containment, eradication, and recovery efforts.
• Document incident details and lessons learned for continuous improvement.
• Develop and maintain incident response playbooks and procedures.
• Work closely with other teams (network, IT-Security, system administrators, etc.) during incident resolution.
• Experience in tabletop exercises and real-time incident simulations.

Threat Hunting / Purple Team

• Conduct proactive threat hunting exercises to identify potential vulnerabilities and attack vectors.
• Lead red team (offensive security) exercises to simulate real-world attacks and assess our defenses.
• Provide actionable insights to improve our security controls based on purple team findings.

Vulnerability Management

• Regularly assess and prioritize vulnerabilities across our environment.
• Coordinate vulnerability scanning and patch management efforts.
• Ensure timely remediation of critical vulnerabilities.

Penetration Testing

• Collaborate with external penetration testers and conduct internal penetration tests.
• Identify vulnerabilities in our systems, applications, and network infrastructure.
• Provide actionable recommendations to remediate identified weaknesses.

KPI / Compliance Monitoring

• Define and track key performance indicators (KPIs) related to security operations.
• Monitor compliance with security policies, standards, and regulations.
• Generate reports and metrics for management and stakeholders.

Qualifications and Skills

• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
• Relevant certifications (e.g., CISSP, CEH, CompTIA Security+, etc.) are highly desirable.
• Strong analytical skills and attention to detail.
• Experience with security tools, such as EDR, vulnerability scanning, SOAR, mail security, SIEM platforms, vulnerability scanners, and penetration testing frameworks.
• Knowledge of industry standards (ISO 27001, NIST, CIS Controls, etc.).
• English level B2 or C1 to efficiently work in a multi-national environment.

Become part of a corporate culture that actively promotes constructive exchanges between colleagues, customers and partners. Work with us to improve people's lives around the world.