Cyber Security Specialist

**Job Description**:

- Cyber Security Specialist

Are you looking for a challenging and exciting career in the têxtile industry? Groz-Beckert is the place for you As a leading provider of industrial machine needles, precision parts, fine tools, and systems and services for the production and joining of têxtile surfaces, we combine passion, creativity, and expertise to drive innovation and excellence in our industry.

With around 9,500 colleagues worldwide, you will join a strong community of professionals who share your enthusiasm and drive for success. We offer a collaborative and supportive work environment where you can learn from industry experts and work on exciting projects that impact the future of têxtiles.

Don't miss your chance to become a part of our team, join us and let yourself be infected by the fascination of Groz-Beckert

**Job Objective**

We are looking for a highly skilled and experienced Cybersecurity Specialist to join our global Information Security team. In this strategic role, you will play a key part in managing enterprise security tools, leading incident response efforts, and strengthening our overall security posture through advanced threat detection and intelligence-driven enhancements.

**Roles & Responsibilities**

**Enterprise Security Tooling Management**
- Lead the rollout, administration, and continuous optimization of enterprise security tools, including EDR, Splunk SIEM, and Rapid7 vulnerability management.
- Implement automated workflows to enhance threat detection and response capabilities.
- Develop and maintain detailed documentation for security tools, configurations, and operational processes.

**Security Monitoring & Analytics**
- Design, implement, and continuously refine custom detection rules within EDR and SIEM platforms.
- Build and maintain security dashboards to provide real-time visibility into the organization’s security posture.
- Conduct regular threat hunting activities to proactively identify suspicious behavior or potential breaches.

**Incident Response Coordination**
- Lead and coordinate incident response activities in collaboration with the external 24x7 Security Operations Center (SOC).
- Act as the primary point of contact between internal teams and external security specialists during security incidents.
- Perform post-incident reviews and develop actionable recommendations to strengthen future response efforts.

S**ecurity Enhancement Initiatives**
- Support threat analysis efforts and coordinate remediation activities across regional teams.
- Collaborate with IT and infrastructure teams to implement and enforce robust security controls.
- Develop and maintain security playbooks and standard operating procedures to ensure consistent and efficient responses.

**Operational Support**
- Participate in scheduled monthly weekend maintenance activities (approximately one hour each on Saturday and Sunday).
- Provide support for the maintenance and operation of network equipment in server rooms as required.

**Professional Development & Knowledge Sharing**
- Stay up to date on emerging threats, evolving vulnerabilities, and industry best practices.
- Continuously pursue professional development and maintain relevant cybersecurity certifications.
- Share knowledge and mentor team members to enhance the overall security maturity of the organization.

**Job Requirements**
- Minimum 3 years of progressive experience in a Cybersecurity Analyst or similar role.
- Proven hands-on experience with cybersecurity tools such as EDR, SIEM, and vulnerability scanners (e.g., Splunk, Rapid7).
- Strong background in incident response, threat detection, and security monitoring.
- In-depth knowledge of attack vectors, exploits, and mitigation strategies.
- Familiarity with leading security frameworks and standards, including MITRE ATT&CK, NIST, and ISO 27001.
- Advanced skills in configuring and optimizing cybersecurity tools and platforms.
- Ability to create custom detection rules and correlation logic for threat identification.
- Proficient in scripting to automate security processes and improve operational efficiency.
- Skilled in log analysis, threat hunting techniques, and cloud security monitoring.
- Industry-recognized certifications such as CEH, CompTIA Security+, GCIH, CISSP, or CCSP are highly preferred.

**Travel Requirements**
- Willingness to travel occasionally to Germany for cross-regional collaboration and team engagement.

**Languages requirements**
- Proficiency in English is required to communicate effectively with global teams and stakeholders.
- Ability to communicate in Mandarin is an advantage, particularly for collaboration with Mandarin-speaking counterparts (East Asia) and handling documentation in the language.

Nicholas Tan