Job Title Manager Information Security - Cyber Detection & Response Engineering (M4)Area / Team Global Information Security - Cyber Detection & Response EngineeringPurpose As part of the Cyber Detection & Response Engineering team, this role is responsible for the innovation, implementation, and operation of advanced security detection and response capabilities. The position focuses on operating and enhancing security technologies that detect and respond to cyber threats, with a strong emphasis on Microsoft security solutions, especially Microsoft Defender for Endpoint and Microsoft Sentinel, as well as relevant cloud detection and response technologies. A key responsibility is the design and development of bespoke, tailored detection rules and use cases across multiple platforms (e.g., Defender, Sentinel, cloud-native security tools) to effectively identify evolving cyber threats and attack patterns. The role ensures the protection of adidas' systems, data, and infrastructure by enabling effective detection mechanisms, engineering automation solutions for scalable and efficient incident response, and continuously improving security operations. It also drives the adoption of AI-based capabilities to enhance detection quality, operational efficiency, and scalability of cyber defense solutions.Key Accountabilities Operate, manage, and continuously improve cyber detection and response technologies, with a focus on Microsoft Defender for Endpoint and related Microsoft security stackAct as the L3 primary contact for operations, troubleshooting, and support of endpoint detection and response (EDR) solutionsDesign, implement, and optimize detection rules and use cases to identify cyber threats and attack patternsDevelop and implement automation (e.g., SOAR use cases, scripting) to improve incident response efficiency and scalabilityLeverage AI and advanced analytics to enhance detection capabilities and automate security operations processesContribute to the implementation and operationalization of security tools and services across the organizationCollaborate with global security teams, IT teams, and vendors to enhance detection and response capabilitiesProvide expert guidance on detection strategies, tooling, and security best practicesSupport continuous improvement initiatives, including tuning detections, reducing false positives, and increasing coverageContribute to security standards, policies, and operational procedures in the detection and response domainWhat We Are Looking For College or university degree with focus on IT, Information Security, or equivalent combination of education and experience7+ years of IT experience, including at least 4-5 years in an area related to cybersecurity, preferably in detection & response or security operationsStrong interpersonal and communication skills. Fluent English skills (verbal and written)Specific Technical Skills (Role Dependent) Strong experience with Microsoft security technologies, especially Microsoft Defender for EndpointExperience in detection engineering (SIEM, EDR, XDR) and writing detection rules/use casesHands‐on experience with automation (e.g., scripting, SOAR platforms such as Microsoft Sentinel)Solid understanding of cyber attack techniques, frameworks (e.g., MITRE ATT&CK), and incident response processesExperience with log analysis, threat hunting, and security monitoringNice to Have Technical Skills Experience with AI/ML use cases in cybersecurity (e.g., anomaly detection, automated triage)Experience with cloud security (Azure Security, Microsoft Defender for Cloud)Knowledge of additional domains such as SIEM, SOAR, Vulnerability Management, or Application SecurityScripting skills (Python, PowerShell)Additional Attributes and Experience DevOps mindset with ownership of the IT process from development/testing to deployment phaseExperience working in agile teams (Scrum/Kanban)Ability to cope with change, make decisions, and act comfortably when confronted with risk or uncertaintyProactivity and "team player" attitude, with strong problem solving skills, hands‐on approach, and a growth mindsetPassion for cybersecurity and continuous improvement, with a strong quality and automation mindsetMain Technologies We Use Microsoft Security Stack (Defender for Endpoint, Defender for Cloud Apps, Microsoft Sentinel)Endpoint Detection & Response (EDR/XDR)Security Information and Event Management (SIEM)Security Orchestration, Automation and Response (SOAR)Threat detection frameworks (MITRE ATT&CK)Automation & scripting (PowerShell, Python)AI-driven security analytics
#J-18808-Ljbffr