Take responsibility for the administration, operation and continuous development of our SOC tool landscape.
Focus in particular on endpoint protection platforms (EPP) and our SIEM.
Connect, integrate and provide technical support for new log sources and security tools.
Ensure the availability, performance and data quality of the SOC systems in use.
Analyze, isolate and resolve incidents in the SOC infrastructure.
Document configurations, processes and operational procedures in a clear and traceable manner.
Work closely with other teams and actively contribute to services and security topics as part of our ongoing organizational development.

A completed degree (FH/Bachelor) in Computer Science, Cybersecurity or another IT/security-related field; or completed vocational training as an IT specialist in system integration, plus at least three years of verifiable professional experience in the described area.
Good knowledge of administering Windows
and Linux-based platforms.
Experience administering antivirus, EDR or XDR systems.
Knowledge of automation and scripting, e.g., with Ansible, Python or similar technologies.
Basic knowledge of networking as well as logging and telemetry.
A structured, solution-oriented working style, self-initiative and enjoyment of teamwork.

Personal flexibility through flexible working hours combined with stability provided by 100% municipal shareholders.
The ideal company size with short communication paths — with approx. 300 employees, Lecos is neither too small nor too large.
Benefits such as a public transport ticket (Jobticket), company bike (Jobrad), childcare allowance, and company health insurance.
Family-friendly policies, including the option for occasional on-site personal childcare and additional leave if a child is ill.

Security Operations Engineer – SOC

Key skills