Security Analyst with German

Being in a development stage of the collaboration, we’re enjoying a growing team with diverse skills, from DevOps Engineers and Application Management Engineers to Observability Engineers and Security Engineers. In terms of efficiency, our core is focused on strong communication, both within the team and with our peers from customer side. We’re ready to support ramp-ups and deliveries, as well as facilitate sustainable learning paths for each member. All in all, we strive to enjoy the work we do, both individually and as a team.

The customer treats us as consultants/partners who can help them innovate their existing processes, tools and initiatives.

The Security Analyst serves as an indispensable asset to our SOC team, contributing to our organization's cybersecurity endeavors with a blend of seasoned expertise in threat monitoring and detection, coupled with a fervent drive to cultivate proficiency in incident response. Through their dedication and adaptability, they play a central role in fortifying our security posture and safeguarding our digital assets against evolving threats.

You will have an impact on the project’s evolution, as well as the chance to contribute with your own ideas and expertise in building a successful relation with the client.

We are looking for a German speaker Senior Security Analyst to support us with our Security Operations opportunities and the internal Security Operations Center (SOC) environment. This role focuses on testing, developing, and validating security monitoring and incident response capabilities.

The ideal candidate has strong hands-on experience with SIEM/EDR platforms, can create and validate use cases, and contribute to improving detection and response maturity across different environments.

The role will have a split responsibility between client delivery and internal SOC development/research.

Responsibilities:

POC Development & Testing: Develop, tune, and document detection rules and playbooks; Test and simulate security events to validate use cases (e.g. brute force, phishing, malware execution, port scanning, exfiltration attempts).

Threat Detection & Incident Response: Analyze security alerts and correlate events across multiple tools; Perform initial triage and investigations for incidents during POCs; Provide remediation recommendations and assist with containment during test incidents.

Collaboration & Knowledge Sharing; Contribute to reporting and documentation of POC outcomes; Share knowledge with team members and help improve detection strategies.

• 5+ years in SOC, cyber defense, or incident response roles.
• Proficiency with SIEM platforms (e.g., Microsoft Sentinel, Splunk, Elastic, QRadar).
• Familiarity with EDR tools (Microsoft Defender, SentinelOne, CrowdStrike, etc.).
• Understanding of NIDS/NIPS and network log analysis.
• Ability to simulate threats and validate detections against frameworks such as MITRE ATT&CK.
• Drive proactive improvements and continuous development of the client & organization’s security infrastructure to anticipate emerging threats and enhance overall security posture.
• Knowledge of current IT security standards. data protection regulations (e.g. ISO/IEC 27001, MITRE ATT&CK, GDPR [German - DSGVO]) and ITIL methodologies.
• Maintain a commitment to continuous learning and professional development, staying informed about emerging threats, cybersecurity trends, and best practices to enhance proficiency in security operations and incident response
• Effective communication in English and German (written and spoken) - skilled at explaining technical findings in clear
• Proactive in finding practical, timely solutions to security threats while balancing business needs.
• Strong analytical and innovative mindset, able to design and test realistic use cases.
• Capable of guiding junior analysts, working across cross-functional teams, and fostering a culture of knowledge-sharing.
• Ability to work together with - or independently across multiple teams.

• Nice to have:
  • Certifications or achievements of any nature in the Cybersecurity area.
  • Zscaler knowledge is a plus (needed for an ongoing project).

At Accesa you can

Enjoy our holistic benefits program that covers the four pillars that we believe come together to support our wellbeing, covering social, physical, emotional wellbeing, as well as work-life fusion.

• Physical Wellbeing: Our wellbeing program includes medical benefits, gym support, and personalised fitness options for an active lifestyle, complemented by team events and the Healthy Habits Club.
• Work-Life Fusion: In very dynamic industries such as IT, the line between our professional and personal lives can quickly become blurred. Having a one-size-fits-one approach gives us the flexibility to define the work-life dynamic that works for us.
• Emotional Wellbeing: We believe that to maintain our overall health, we need to invest in our mental wellbeing just as much as we do in our physical health, social connections or in achieving work-life balance.
• Social Wellbeing: As a growing community in a hybrid environment, we want to ensure we remain connected not just by the great work we do every day but through our passions and interests.

Accesa is a leading technology company headquartered in Cluj-Napoca, with offices in Oradea and 20 years of experience in turning business challenges into opportunities and growth.

A value-driven organization, it has established itself as a partner of choice for major brands in Retail, Manufacturing, Finance, and Banking. It covers the complete digital evolution journey of its customers, from ideation and requirements setup to software development and managed services solutions.

With more than 1,200 IT professionals, Accesa also has a fast-growing footprint, establishing itself as an employer of choice for IT professionals who are passionate about problem-solving through technology. Coming together in strong tech teams with a customer-centric approach, they enable businesses to grow, delivering value for our clients, partners, industry, and community.