The Senior Security Incident Responder (m/f/d) leads the investigation and resolution of high-severity cybersecurity incidents. They are the first line of defense during active attacks and play a vital role in incident lifecycle management—from detection to recovery and root cause analysis. 

Creating passion: your responsibilities Incident Response: Coordinating and executing the response to security incidents, including containment, eradication, and support in recovery efforts Digital Forensics: Conduct digital forensics investigations to analyze compromised systems, gather evidence, and identify the scope and impact of security incident Threat Analysis & Reporting: Correlate logs, alerts, and IOCs to identify root causes and attack paths, Create detailed incident reports and executive summaries and Conduct lessons-learned sessions and recommend preventive measures Documentation: Maintain detailed records of incident response activities, findings, and lessons learned to support post-incident reviews and reporting Collaboration: Work closely with other members of the SOC/CERT team and cross-functional teams to ensure a comprehensive approach to incident management Monitoring and Detection: Monitoring security alerts and events to identify potential incidents and escalate them as necessary Continuous Improvement: Contribute to the development and refinement of incident response processes, tools, and techniques based on experience and emerging threats Contributing your strengths: your qualifications Bachelor’s/Master’s in Cybersecurity, Computer Science, or related field 6+ years in cybersecurity, ideally as Security Incident Responder Proficiency in digital forensics tools and techniques (e.g. EZ Tools, Velociraptor, Autopsy) Hands-on knowledge of SIEM, and security analytics tools (e.g. Microsoft Sentinel, Microsoft Defender XDR, Elastic SIEM) Experience in security incident handling, digital forensics, or a related role English is a must, German and French are a plus Understanding of cybersecurity frameworks and standards (e.g. ISO27001, NIST, GDPR) Strong analytical and problem-solving skills Following certificates are a plus: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), Cloud certifications (AWS, Azure, or GCP) Our commitment to you: your benefits

As an internationally successful family business, the Liebherr Group offers you a secure job, a unique variety of tasks and exciting development opportunities. Become part of our strong team today and get to know the Liebherr Group as a reliable partner. Profit from these benefits:

Attractive salary and social benefits Flexible and hybrid working Freedom for creative work  Safe and secure workplace Individual development and training opportunities  Meal voucher Life and accident insurance Private health insurance Christmas and holiday bonus payments

Please only use the online application option.
Please note that we do not accept applications via recruitment agencies for this position.

Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions, please contact Ivana Kiesewetter.

One Passion. Many Opportunities.

The company

Liebherr is a family-run technology company that is not only one of the largest construction machinery manufacturers in the world, but also offers high-quality, user-oriented products and services in many other areas. The Group employs nearly 50,000 people in more than 140 companies on all continents.   

Location

Liebherr IT Service Center Ibérica S.L.

C/ Aluminio 6-8

19200 Azuqueca de Henares

Spain (ES)

Contact

Ivana Kiesewetter

ivana.kiesewetter@liebherr.com