Automation Engineer (m/f/d)

  • CANCOM
  • Aachen
  • Berlin
  • Hamburg
  • Hannover
  • Köln
  • Košice
  • Langenfeld
  • Leipzig
  • München
  • Stuttgart
  • Presence / Mobile
  • Junior, Career start
  • Work experience
  • Senior, very experienced
  • Technical occupations (other)
  • Fulltime
Automation Engineer (m/f/d), 1. image

ABOUT CANCOM

At CANCOM, you will be surrounded by an innovative, agile and sustainable environment. More than 5.600 employees work day in, day out to improve collaboration and exchange in various areas of life by using modern IT solutions. Do you want to be a part of it and take the next step in your career? Then join us on our Digital Journey. We are looking forward to meet innovative and open minded people from all different areas. What matters to us is that you are dynamic, self-driven, and eager to reach for excellence as a team.

YOUR NEW JOB

  • Develop, maintain, and enhance SOAR content, including custom playbooks, automations, dashboards, reports, and API integrations
  • Optimise and automate SOC workflows to reduce incident response times and improve operational efficiency
  • Work within the existing playbook framework while ensuring scalability, agility, and efficiency
  • Continuously refine incident response processes by leveraging XSOAR capabilities within the current security environment
  • Prioritise and manage a backlog of XSOAR feature requests, enhancements, and issue resolution
  • Collaborate with the SOC teams and other stakeholders to identify opportunities for automation and process improvements
  • Document workflows, processes, and technical implementations to ensure knowledge sharing and maintainability
  • Ensure integrations with external security tools (SIEMs, EDRs, Threat Intelligence platforms, etc.) function effectively and meet operational needs
  • Provide troubleshooting and support for XSOAR-related issues, ensuring minimal disruption to SOC operations

THIS IS YOUR PROFILE

  • Experience with XSOAR (or similar SOAR platforms) in an MSSP or enterprise SOC environment
  • Strong understanding of security operations, incident response, and automation concepts
  • Familiarity with security tools such as SIEM, EDR, IDS/IPS, and Threat Intelligence platforms
  • Proficiency in developing playbooks and custom automations
  • Strong analytical skills to evaluate complex, multivariate problems and apply a structured, systematic approach to developing efficient solutions
  • Strong documentation skills to create clear, concise technical and process-related materials
  • Excellent time management and organisational skills to handle multiple tasks efficiently
  • Strong communication skills - capable of translating technical concepts into clear, actionable information for various audiences
  • English proficiency on a very communicative level, German is an advantage

OUR BENEFITS

  • Flexible working hours and mobile office in coordination with the manager
  • State-of-the-art equipment including company phone, which may also be used privately
  • Discounts thanks to the "Corporate Benefits" portal
  • Bike leasing
  • Free beverages & vitamins (fruit)
  • Further training opportunities
  • Employee events