Defend (Services)

(Senior) Incident Response Consultant (f/m/d)

We are committed to equal opportunities and diversity. We therefore welcome all applications - regardless of nationality, religion/worldview, ethnicity and social origin, age, and sexual orientation and identity.





Full time

Working time



The Job

Are you passionate about cybersecurity?

  • Carrying out digital forensic investigations as part of interdisciplinary incident response projects
  • Initiation of remediation measures to mitigate risks and contain potential damage in security incidents
  • Derivation of customized measures to increase the cyber resilience of affected customers
  • Documentation of investigation results and public presentation to customers


What we’re looking for*

  • Completed, relevant technical training with at least 5 years of experience in the SOC or Incident Response (DFIR) area
  • Experience with:
    • Windows and Linux forensics
    • File system, storage and network forensics.
    • Thor log analysis
    • Current IR tools, e.g. Elastic, Plaso, Timesketch, Velociraptor, Thor
    • Knowledge of common SIEM solutions
    • Experience in the use of EDR tools for threat hunting purposes.
    • Linux (CLI) and scripting
  • Experience with advanced persistent threats and their TTPs (especially lateral movement)
  • Support of ransomware victims
  • Remediation consulting, planning & execution
  • Willingness to travel
  • Willingness to participate in on-call duties
  • German language skills at B2 level and English language skills at C1 level


*Courage to leave a gap: You don’t meet our requirements completely? We are still looking forward to your application!

We would like to increase the number of women in areas where they are underrepresented and are therefore particularly happy to receive applications from women. BIPOCs and people from the LGBTQIA+ community as well as people with a migration background are also strongly encouraged to apply. Applications from severely disabled people will be given preferential consideration in the context of equal suitability.


Best Place to Work

  • Culture

    International team
    Company events
    Close team atmosphere
    Culture of trust
    Openness and transparency

  • Modern Work Environment

    Trust-based flex time
    Remote work
    Part-time schedules
    Ergonomic office equipment

  • Feel good

    Fruit and vegetables
    Diverse selection of drinks
    Daily food allowance
    Health care
    Subsidy Urban Sports Club
    Language courses with Babbel
    voiio - Employee Wellbeing Plattform

  • Financials

    Market-competitive salary
    30 days of vacation
    Closed on 24th and 31st December
    Employer-funded pension
    Continuing education and conferences
    Holiday-subsidy voluntary service
    Subsidy BusinessBike
    Subsidy "Deutschlandticket Job"
    Shopping discount via Corporate Benefits