SOC Manager (m/f/d)

Job Description

Klöckner & Co is one of the world's largest producer-independent steel and metal distributors and one of the leading steel service companies. Klöckner & Co serves over 90,000 customers through its distribution and service network with around 160 locations in 13 countries. By expanding its portfolio of CO2-reduced materials, services and logistics under the new umbrella brand Nexigen®, the company is underscoring its role as a pioneer of a sustainable steel industry. At the same time, as a pioneer of digital transformation in the steel industry, Klöckner & Co has set itself the goal of digitizing and largely automating its supply and service chain. In this way, the company aims to become the leading one-stop store for steel, other materials, equipment and processing services in Europe and America. In our Digital Hub kloeckner.i GmbH, we are bundling all projects geared to this under one roof. With currently 150 employees, we work hybrid at the Berlin and Duisburg sites.

Kloeckner has one Global Security team to help bring Kloeckner to the next level while keeping them secure. This position will be working with team members and security experts from all over the world to build one robust security framework for Kloeckner. The SOC Manager will serve as the primary point of contact between the organization and its Managed Security Services Provider (MSSP), overseeing the consumption and delivery of Security Operations Center (SOC) and Security Information and Event Management (SIEM) services. The SOC Manager ensures that cybersecurity incidents are handled effectively, reports on SOC operations, and collaborates with internal stakeholders to maintain a strong security posture. This role is critical in managing the relationship with the MSSP to ensure compliance, timely incident responses, and service level performance that aligns with business objectives. This is a strategic role that does not involve direct management of an internal SOC team but requires oversight and governance of the MSSP-provided SOC services. This role is a maternity leave replacement and limited for 1 year.

Your Role

• Manage the Relationship with the MSSP:

Act as the liaison between the organization and the MSSP to ensure smooth SOC/SIEM service delivery, performance tracking, and issue resolution

• Monitor Incident Response and Escalation:

Oversee how security incidents are managed and escalated by the MSSP, ensuring they align with internal policies and are addressed in a timely manner

• Ensure Threat Intelligence and Risk Management:

Validate that the MSSP integrates the latest threat intelligence and aligns their services with the organization's risk management framework

• Provide review and analyze SOC Reports:

Analyze security events and incident reports provided by the MSSP, communicate findings to senior management, and recommend actions for improvement

• Coordinate with Internal Stakeholders:

Collaborate with internal IT, Risk, and Compliance teams to align SOC services with overall business goals and regulatory requirements

• Ensure Compliance and Regulatory Alignment:

Ensure that SOC operations provided by the MSSP meet regulatory and compliance obligations (e.g., GDPR, ISO 27001, NIST), and assist with audits when necessary

• Participate in Incident Response Planning and Testing:

Coordinate regular incident response tests and simulations with the MSSP to ensure readiness for security incidents

• Continuous Service Improvement:

Continuously assess MSSP service performance and propose improvements to enhance the organization's cybersecurity posture and resilience

• Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field. Master's degree is a plus
• Relevant industry certifications such as CISSP, CISM, CEH, GIAC, or similar. ITIL or similar service management certification is desirable
• Minimum of 5 years of experience in cybersecurity, with a focus on SOC operations, incident response, or managed security services
• Experience managing third-party vendors or MSSP relationships
• Strong knowledge of SIEM platforms and technologies (e.g., MS Sentinel, Splunk, QRadar, or similar)
• Expertise in cybersecurity best practices and incident response frameworks (e.g., NIST CSF, MITRE ATT&CK)
• Strong understanding of threat intelligence, risk management, and regulatory compliance (e.g., GDPR, ISO 27001)
• Excellent English communication skills, both written and verbal. German language skills are a strong advantage
• Ability to prioritize and manage multiple tasks, ensuring that security services are delivered effectively and incidents are responded to promptly

• Receive a competitive compensation package and great benefits such as a discounted Urban Sports membership, subsidy to Deutschland ticket, attractive offers in the Klöckner Corporate Benefits advantage portal, etc.
• Work in an international, dynamic, and diverse team with a strong team spirit and a hands-on mentality that is digitalizing a traditional industry
• Benefit from a wide range of individual training, courses, and coaching for optimal personal development and enhance your language skills in our German and English courses
• Work in a modern, hybrid environment and tailor your working hours (full-time = 38.5 hours) flexibly with flextime
• Enjoy 30 days of well-deserved vacation, accompanied by additional contractual money
• Meet your colleagues in a modern office in Düsseldorf (close to the airport) or Berlin

View More