Share this Job

Cyber Security Incident Manager (m/f/d)

Date: 02-Apr-2023

Location: Hamburg, HH, DE, 22297

Company: Telefonica S.A.

Contract type: full-time, unlimited
Location: Munich, Düsseldorf, Berlin (Teltow), Nuremberg, Hamburg 
Entry: At the earliest possible date


Working anywhere. We work where it is most productive. After a successful application process, we offer you the opportunity to work anywhere in Germany. At Telefónica, we rely on a flexible hybrid model that includes the benefits of both remote work and on-site work. You will be assigned to the nearest Telefónica location based on where you live. We will discuss further details with you during the application process.


Who we are

We are O2 Telefónica - with our mobile brands we connect millions of people and offer our customers mobile freedom in the digital world. As a leading telecommunications provider, we are playing a key role in shaping digitisation in Germany. Our approximately 7,400 employees in Germany drive the transformation forward every day - in our own company as well.


Telefónica is one of the top employers in Germany and is part of the global telecommunications group Telefónica S.A. with 110,000 committed employees worldwide.  

Become part of our unique team and let's make a difference together! 


Job Description

The role of the Cyber Security Incident Manager is to manage and coordinate response and recovery activities of information security incidents and manage function-related business processes. This includes complete e2e management of security incidents including analysis, containment and eradication, alongside collaboration with appropriate business partners and providing them with business insight as to the status, impact and necessary actions in regards to such incidents. The role will also play a vital part in constant Incident Response Lifecycle improvements and overall maturity enhancement of Telefonica’s Cyber Defense Center (CDC)


What to expect

  • Being the point of contact to drive different cyber incidents managed by CDC  
  • Lead and act as the key moderator for conference calls 
  • Keep incidents status up to date through regular updates 
  • Apply a consistent approach of managing and responding to Cyber Security Incidents
  • Oversee all aspects of incident management process from identification to remediation and post incident activities
  • Maintain daily communication with the analyst team 
  • Drive incidents to a conclusion based on the time frame defined for the incident criticality level 
  • Coordinate the activities of analysts and parties outside of CDC involved in the incident
  • Drive regular tabletop exercises and Blue team tests for the team to keep them updated and ready for the time of an incident
  • Collaborate with all internal CDC team such as Analysts, Vulnerability Managers, Threat Intelligence Specialists, CDC Operational Specialists
  • Provide input into the regular improvement of Telefonica Germany use cases based on lessons which had been learned from Incidents
  • Identify, collect, document and address all post incident items
  • Contribute to the overall Cyber Defense Center Reporting 
  • Identify Root Causes of Information Security Incidents and address key issues to reduce re-occurring incidents
  • Being on call if necessary and operate outside normal office hours if and when required


What you bring

  • Bachelor’s degree in Computer Science / Information Technology or equivalent experience
  • Relevant industry-recognized security certifications such as CISSP, GCIH, ECIH 
  • 5+ years of experience with information security related activities 
  • 4+ years of experience in managing and handling security incidents in large corporate environments as part of a Cyber Incident Response function
  • Excellent communication skills (communicating and reporting complex technical concepts to business and risk stakeholders)
  • Experience dealing directly with senior stakeholders – Directors and VP level
  • Strong understanding of cybersecurity-related regulations 
  • Deep technical expertise in cyber threat and crisis management 
  • Strong understanding of enterprise-level information systems and technology architectures, expertise in network security, cryptography, virtualization and cloud security. 
  • Familiarity with risk management and controls frameworks, cyber kill chain and SANS Incident Handling lifecycle 
  • Strong understanding & knowledge of regional and global IR and monitoring technological and trend landscape 


What we offer

Modern, flexible working environment: Work wherever you want within Germany. Whether in home office or one of our well-equipped offices. We offer you maximum flexibility to organize your working day.

Training & Development: Everthing you need for your individual growth. With a personal development plan, learning journeys and the possibility of job rotations, you will reach your goals with us – according to our guiding principle „connect, learn and move2grow".

Financial benefits: A smartphone for business and private use, as well as the possibility to provide for partners, friends and family via a credit balance, is a given. In addition, you benefit from a variety of corporate benefits.

Health: Our "Feel Good" program keeps your body and mind in balance. Among other things, we offer fitness classes, nutritional counseling, and programs to improve workplace ergonomics and work-life balance.

Social engagement: We are also involved in social projects outside of our day-to-day work. You can support social projects through volunteering days / holidays or charity runs.


How to apply and what else you should know

Convince us with your meaningful curriculum vitae as well as corresponding certificates. You do not need a letter of motivation with us. Please note that applications are only possible via our applicant portal and applications by e-mail cannot be considered. 

Do you have questions about our application process and are you interested in further information about the position? Please reach out to our Talent Operations Team ( 


In case of same qualification, applicants (m/f/d) with severe disability will be preferred. All gender are equally welcome