Cyber Security Engineer

The opportunity:

Join our dynamic Threat Intelligence and Detection Engineering (TIDE) team within Cyber Operations, dedicated to safeguarding critical infrastructure. Work alongside motivated professionals in a collaborative environment, leveraging cutting-edge technologies, automation, and innovative GenAI solutions.

You'll have opportunities to expand your professional network across various cybersecurity disciplines, including Cyber Defense Center (CDC), Vulnerability Management (VMAD), and Architecture & Engineering (A&E).

We prioritize enthusiasm, creativity, and passion for continuous learning over extensive experience. You should be curious, innovative, and excited to explore emerging cybersecurity approaches.

How you’ll make an impact:

• Develop and implement detection engineering content, automation, and integrations across IT/OT environments.

• Enhance our Security Orchestration, Automation, and Response (SOAR) platform by developing additional integrations and response automations.

• Incorporate cutting-edge GenAI technologies into operational processes.

• Build and maintain detection baselines tailored to evolving threats and business-specific use cases.

• Collaborate closely with Incident Response and Threat Intelligence teams to continuously refine detection capabilities.

• Conduct proactive technical analyses post-incident to improve operational effectiveness and response efficiency.

• Monitor cybersecurity trends, emerging threats, and innovative technologies, applying insights to enhance detection and response strategies.

• Support evaluations and integration of new cybersecurity tools and platforms.

• Foster continuous improvement initiatives in tooling, automation, and operational processes.

• Responsible to ensure compliance with applicable external and internal regulations, procedures, and guidelines.

• Living Hitachi Energy’s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business.

Your background:

•  Bachelor's or master’s degree in relevant field.

• A minimum of 2-3 years in cybersecurity (OT/IT), emphasizing operational procedures in threat monitoring and incident management.

• A grasp of the IT/OT Threat Landscape.

• Proficiency in threat detection engineering automation, including the entire Use Case lifecycle.

• Hands-on experience or strong interest in Microsoft Azure security solutions, particularly Azure Sentinel, including developing detection rules and automations using Kusto Query Language (KQL).

• Familiarity with Azure cloud infrastructure and enthusiasm for leveraging cloud-native technologies in detection engineering and security monitoring.

• Hands-on experience with security tech, like firewalls, anomaly detection tools, EDR, and IDS.

• A foundational understanding of security standards and frameworks such as NIST, CIS, MITRE ATT&CK, and the Cyber Kill Chain.

• Experience in roles such as SOC, CSIRT, or CSOC would be advantageous.

• Effective communication skills, allowing you to articulate security issues to peers, stakeholders, and clients.

• Proficiency in both spoken & written English language is required and German language skills would be a significant asset.