Would you like to directly contribute to national and allied security?
This initiative is a cornerstone of modern military defense, dedicated to securing and advancing the digital backbone of a premier NATO corps headquarters. The 1GNC is a critical binational operational command, and this project focuses on ensuring the secure, reliable, and uninterrupted operation of all Command, Control, Information, and Communication Systems (C2IS/CIS). The mission is to build and sustain cyber resilience, enabling effective decision-making and command in both peacetime and deployed operations. Working on this project offers a unique opportunity to tackle formidable technical challenges, work alongside dedicated military and civilian experts, and see your work have a tangible impact on real-world security and stability.
Responsibilities:
Threat Detection & Vulnerability Management:
* Proactively analyze various data sources to detect IT phenomena and emerging cyber threats to 1GNC services.
* Assess cybersecurity aspects of non-standard amendment proposals without architectural impact.
* Conduct real-time, reactive analysis and interpretation of correlated log data during escalations from senior analysts.
Incident Response & Mitigation:
* Determine the impact of identified threats and vulnerabilities.
* Decide on and commission mitigating measures for unknown threats without architecture impact.
* Monitor the execution of mitigation orders.
Escalation & Coordination:
* Escalate vulnerabilities and threats impacting the architecture within 1GNC.
* Decide on and execute the escalation of threats outside 1GNC to relevant NATO, German (DEU), or Dutch (NLD) security organizations.
Analysis & Documentation:
* Conduct forensic and internal investigations on behalf of competent authorities.
* Document all findings, analyses, and chosen solutions.
* Support threat analysis and the development of risk profiles.
Process & System Management:
* Ensure the operational quality of connections between external systems and 1GNC equipment.
* Assist in keeping LSOC processes, procedures, and work instructions up-to-date.
Advisory & Collaboration:
* Participate in working groups and meetings according to the HQ's battle rhythm.
* Act as an information security advisor to the Chief Information Assurance.
Essential Qualifications & Experience:
* Proven working experience in a multi-national environment.
* Proven experience in working in a SOC (Security Operation Center).
* Experience in Security Information and Event Management
* Experience in Cyber Incident Management.
* Experience/training/education with SIEM -LOGPoint, Elastic, Splunk.
* Experience with Incident handling - TheHive, Microsoft SCSM, Greenbone,Trellix EPO.
* Experience with Cyber Threat intell -MISP -Security Analytic
* Advanced English skills
Nice to have:
* Knowledge of communications and/or information networks is preferred.
* Experience with IT-Consulting is preferred.
* University or bachelor degree of Science is preferred.
* Experience with Business informatics is preferred.
* Certificate in EC-Council and ITIL is preferred.
* Experience with MS SharePoint is preferred
* Proficiency in the German language is preferred.
* Knowledge about setting up a incident handling process for an area with inceased security requirments is preferred
If you've read the description and feel this role is a great match, we'd love to hear from you! Click "Apply for this job" to be directed to a brief questionnaire. It should only take a few moments to complete, and we'll be in touch promptly if your experience aligns with our needs.