IT Security Engineer* (Senior)

Develop and maintain automated SOC Level 1 and Level 2 runbooks and playbooks using Logic Apps, Power Automate, and AI Foundry components. Engineer detection rules, workbooks, and playbooks in Microsoft Sentinel/Microsoft XDR platforms. Integrate and optimize Microsoft Defender for Endpoint, Identity, Cloud, and Office 365 within the XDR framework. Apply AI-driven threat detection and response using Microsoft Copilot for Security and related tools. Collaborate with internal teams and external partners to embed security into CI/CD pipelines and IT delivery models. Provide SOC Level 3 support for complex incidents, including forensic analysis and threat containment. Contribute to the DevSecOps organization. Support the implementation of an ISO 27000-aligned ISMS and assist with governance and compliance efforts. Anforderungen: Bachelor's degree in Information Technology, Computer Science, or related field. 5 years of professional experience in relevant field. Minimum 2 years of hands-on experience with SOC Level 1 and Level 2 operations and Level 3 incident response. Programming skills in Python or Powershell. Deep familiarity with Microsoft security products, including Microsoft Sentinel, Defender XDR components and KQL. Strong understanding of Azure infrastructure, identity, and security architecture. Understanding of security baselining, network hardening, and zero trust principles. Ability to work in cross-functional DevSecOps environment. Fluency in English. Fluency in German or any other languages will be considered as an added value.