cSOC – Security Operator

Darmstadt, Germany, Serco Europe [9572]

Field(s) of expertise
Space Systems Engineering
Job type

About this job

Serco is a leading Space Services Provider with thousands of skilled resources that has supported over 50 space missions on behalf of more than 10 Space or Government agencies around the globe, including the ESA and NASA. Serco offers space capability across the full space lifecycle from satellite testing to Launch services, LEOP to spacecraft operations, space surveillance to data management, and supporting downstream application development. With over 55 years history in the space sector Serco is well placed to contribute to National strategies and New Space ventures who want to scale their businesses/organizations with skilled talent.

For our activities at the European Space Security and Education Centre (ESEC) in Belgium and the European Space Operations Centre (ESOC) in Germany, we are currently seeking to employ a highly motivated and enthusiastic Security Operator to work in an exciting innovative international environment.

The role will be part of the ESA Cyber Security Operations Centre (cSOC), a new centre for cyber-security which will safeguard all ESA systems against malicious interference.


  • Monitor alerts, configures tools, prioritizes/triages alerts or issues to determine whether real security incident is occurring;
  • Monitor the alert queue and performs the triage of security alerts;
  • Monitor security dashboards and the health of security sensors;
  • To identify and characterize possible security issues;
  • To diagnostic every security event;
  • To perform first response to security incidents;
  • To escalate to Tier#2 when needed;
  • To support the Tier#2 activities;
  • To continuously monitor health statuses of the system and of composing sub-systems;
  • To create trouble-tickets in case a problem occurs;
  • To decide whether the first level maintenance activities should be launched and to trigger them (contingency management);
  • To escalate all issues which are out of the first level maintenance scope;
  • To support investigation of alarms.


  • Conducting incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists;
  • Effectively communicate tasks, guidance, and methodology with other teams;
  • Use a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise;
  • Skilled in the use of Microsoft Office products;
  • Good knowledge of English both written and spoken;
  • Team player with friendly nature and a willingness to learn;
  • Strong service focus and customer facing skills.



Within Serco we believe there is a place here for everyone. Diversity & Inclusion at Serco is based on a culture where every voice is heard, and every employee feels valued. Working together as one team, we can enhance the experience of our people and teams, improve the value of our solutions to better serve the missions of our customers, and make a difference in our world. We are enthusiastic and passionate about our work which is infectious. We allow our employees to take responsibility for their work and promote a positive working culture.


What we offer:

  • Competitive Salary.
  • Comprehensive package of benefits offered by the company.
  • Assistance with relocation can be provided, details available upon request.
  • Engaging company events to foster team spirit.
  • Reimbursement of public transport expenses.

For information on how the personal data in your application is processed, please see the Serco Europe Privacy Policy.