The Group Security department directly contributes to execution of the Deutsche Börse Group information security strategy. As a central service provider for the Group entities, Group Security is responsible to protect information assets in terms of safety, integrity, confidentiality, authenticity and availability by enforcing information security controls based on the relevant regulatory requirements and follows the international standard ISO/IEC 27000-series on the Information Security Management System. Field of activity In your new position, you will become the head of the cyber defence section and member of the Group Security (GS) Department in Eschborn. The Group Security team is responsible for the information security of the Deutsche Börse Group including its subsidiaries cross the globe. It works in close collaboration with the IT teams in the various legal entities, Risk, Compliance and the CISO function as a 2nd line. Physical Security is as well part of Group Security beside Information Security. GS sets the strategy and direction on protection of the Group as well as detection, response and identity access management. A strong governance function ensures consistent information security risk management including 3rd party suppliers. In the advertised position, you will be focused on Computer Emergency Response, SOC and Threat Analytics in the capacity as a Head of Section. Tasks/responsibilities Leadership and management of the CERT team for hiring and developing team personnel, workload assignment, and process development Define, scope and drive security initiatives to ensure compliance with regulations and the IS framework Take ownership and lead the development and maturity of the CERT and relations with other IS teams Operate and further develop the IS incident response process by involving all relevant internal and external stakeholders Work closely with 2nd and 3rd line of defence teams to help assist in assessments and implement security controls when needed Manage information security incidents by leading and coordinating investigations with stakeholders and documenting incident reports. Recommend security measures to address cyber threats identified, e.g. defining SIEM use-cases. Communicate zero-day threats and vulnerabilities to the relevant IT teams for prompt action e.g. patching Orchestrate threat hunting exercises Help to improve the CERT process excellence by maintaining information security documentation Qualifications/required skills Bachelor's and/or Master’s degree in Engineering, IT or Business Administration University or comparable degree in Computer Science, Information Security, Engineering or related discipline IT experience with 5 years in an information security role Previous experience inleading a CERT or SOC team considered a strong benefit Broad knowledge of IT and Information Security technologies, e.g. SIEM, threat intelligence, networks, operating systems, databases and applications Solid understanding of threats, vulnerabilities, and security controls Deliverable-oriented, with strong problem-solving skills Team player willing to cooperate with multiple colleagues across multiple office geo-locations Good report-writing skills to present the findings of investigations Proficiency in written and spoken English, German would be beneficial