Welcome to ZEISS – a company that combines innovation and responsibility! Our corporate functions are diverse and make a decisive contribution to the strategic orientation and sustainable success of ZEISS.
Corporate Information Technology (CIT) is the central part of the company’s strategy, developing and implementing innovative security solutions to enhance efficiency and competitiveness in the Carl Zeiss Group. By working closely with various business units, CIT ensures that technological advancements and digital transformations are seamlessly integrated into business processes.
Your role:
In this role, you are a senior technical expert within the Cyber Defense Center and a core member of the Cybersecurity Incident Response Team (CIRT). You support the effective handling of cybersecurity incidents by contributing deep technical expertise, structured analysis, and reliable execution throughout the incident response lifecycle.
Acting as a permanent member of the Cybersecurity Incident Response Team (CIRT)
Executing and supporting technical incident response activities, including analysis, containment, and recovery
Escalating critical technical findings and risks to the Incident Commander
Supporting the Incident Commander and Incident Coordinators in the technical execution of incident response activities
Providing technical guidance and expertise to other IR roles
Collaborating closely with Digital Forensics and Threat Intelligence teams to enable in-depth technical analysis
Performing and reporting root cause analysis, incident status, and potential response measures
Supplying accurate technical input for internal communication and external reporting to authorities via the Incident Commander
Ensuring complete and structured documentation of all incident response activities
Your profile:
Several years of professional experience in cybersecurity incident response, SOC, DFIR, or cyber defense environments
Strong technical knowledge of IT infrastructures, networks, operating systems, and cloud environments
Proven experience in handling complex or high-severity cybersecurity incidents
Solid understanding of attacker Tactics, Techniques, and Procedures (TTPs) and the ability to identify, analyze, and respond to them in real-world incidents
Experience mapping observed activity to frameworks such as MITRE ATT&CK and deriving response or mitigation measures
Sound understanding of established incident response frameworks (e.g. NIST, SANS)
Ability to communicate technical findings clearly and concisely to different stakeholder groups
Structured, reliable, and resilient working style, particularly in critical situations
Your ZEISS Recruiting Team:
Lisa Briesner