Description

SGL Carbon is a leader in the development and manufacture of products based on specialty graphite and composites materials. Using our comprehensive technology know-how and in close partnership with our customers, we develop intelligent and leading-edge solutions for the big issues of mobility, energy and digitization. SGL Carbon has more than 5,000 employees worldwide and 30 production sites in Europe, North America and Asia, and a service network in over 100 countries.

SGL Business Services is located at Lavradio/Barreiro and is offering an exciting opportunity as a 

Information Security Analyst (m/w/d)

Your opportunity:

• Security Consulting: consulting and support for our specialist departments in all security-relevant questions; ensuring SGL’s high-level security standards within the framework of IT project work; definition of security-relevant framework parameters for technical solutions; development of technical security concepts for the production IT (OT);
• Incident Monitoring and Management: continuous technical and processual development of our Security Incident Monitoring and Management system; identification, analysis, evaluation, forensics and post mortem analysis of Information Security events and incidents in all relevant areas in close cooperation with all involved teams’ preparation,
• Information Risk Management: conducting technical risk analyses and measure definition with regards to potential Business Impact;
• Information Security Management: auditing the level of implementation of all released Information Security Guidelines utilizing our toolsets as well as your own pen testing skills.

Your profile:

• Completed university degree or comparable, subject-specific work experience;
• At least 5-7 years of practical experience in technical Information Security, Security Incident Analysis and Security Incident Management;
• Excellent technical knowledge in all areas of technical Information Security including protection of manufacturing facilities (OT);
• Detailed knowledge of Information Security Management Systems according to ISO/IEC 2700x and their practical implementation;
• Basic programming knowledge and good scripting skills for automation in heterogeneous environments (C#, Bash, Python, Perl, Powershell);
• comprehensive understanding of the methods needed to anchor Information Security in all business processes up to IT infrastructure;
• Excellent analytical skills, especially concerning attack vector analysis and forensics;
• Fluent written and oral English skills and be willing to travel internationally;
• Open and curious personality, even while enjoying being a security nerd, you love to communicate and enjoys international cooperation in virtual teams

Our promise:
Our commitment to delivering smart solutions offers you diverse opportunities to take responsibility and shape the future. Our core values are convincing through performance, being open-minded and creating momentum. For you, this means exciting topics, challenging tasks, competent support, and fair compensation.

Please send your application with Cover Letter in English to [email protected]