Job offers

SIEM / SOC Analyst


About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging the strengths and best practices of both companies.
ET&S S.A. belongs to the ET&SM technology holding of ERGO Group AG, supporting millions of internal and external customers with state-of-the-art IT solutions to everyday problems. We are dedicated to bring a digital innovations to every aspect of the landscape of insurance. Discover how we are implementing AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate our customers’ future needs around the globe. See how you can be a part of the digital revolution and apply to join us today!

Things you will do:

Being part of ERGO’s International Security Operation Center, you are a cybersecurity professional who works as part of a team to monitor and identify threats to ERGO IT infrastructure, and to assess security systems and measures for weaknesses and possible improvements. Your dual role is to both keep an eye out for attacks in progress and try to figure out ways to find defenses to prevent or mitigate future attacks.

You will be:


  • member of the 2nd level security monitoring team with focus on monitoring ERGOs international subsidiaries
  • responsible for processing of security incidents that have already been pre-qualified in level 1 SOC analysis on the basis of playbooks that are created and maintained in SIEM engineering
  • documentation of the incident
  • if the incident cannot be resolved in Level 2, transfer the incident to the appropriate party (e.g. CSIRT) and support them in the further analysis and processing of that security incident
  • documentation of improvement potential per incident and implementation of lessons learned
  • contribute to regular feedback workshops with SIEM Engineering, Level-1 and CSIRT to optimize the procedures and the tools used, such as run books
  • support SIEM Use Case Development – Collaboration in the creation, maintenance and optimization of the rules and regulations and the instructions for the processing of incidents
  • takeover of on-call duty

The successful candidate will demonstrate:


  • successfully completed a university degree in (business) informatics, mathematics, natural sciences, engineering, business administration or comparable education
  • work experience in the required environment, ideally as an application designer, application developer or comparable
  • profound knowledge of Assembler, ideally profound experience in system programming in the z/OS environment
  • distinct ability to quickly grasp, analyses and precisely formulate complex issues combined with a strong solution orientation
  • high motivation and commitment, initiative, pragmatism and creativity
  • high awareness of quality and responsibility
  • distinct ability to work in a team, social competence
  • good communication skills in written and spoken English


Skills and experience you will need:


  • at least 2 years working experience in a SOC or CSIRT / CERT
  • strong knowledge about (latest) security threats
  • knowledge of Internet technologies, Server, desktop and mobile OS
  • broad experience in network infrastructure
  • flexible, creative, good team-player
  • strong analytical skills
  • ability to work according to compliance standards in a confidential environment
  • ability to explain complex technical matters in easy wording
  • willingness for permanent learning / selfeducation
  • fluency in English (spoken language and documentation) and strong communications skills is a must have



Nice to have:


  • favorably should hold one of the following certifications: SANS SEC503, SANS SEC511
  • proficient knowledge in ITIL processes and relevant ITSM toolsets
  • knowledge of German language skills

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin