Would you like to directly contribute to national and allied security?

This initiative is a cornerstone of modern military defense, dedicated to securing and advancing the digital backbone of a premier NATO corps headquarters. The 1GNC is a critical binational operational command, and this project focuses on ensuring the secure, reliable, and uninterrupted operation of all Command, Control, Information, and Communication Systems (C2IS/CIS). The mission is to build and sustain cyber resilience, enabling effective decision-making and command in both peacetime and deployed operations. Working on this project offers a unique opportunity to tackle formidable technical challenges, work alongside dedicated military and civilian experts, and see your work have a tangible impact on real-world security and stability.

Responsibilities:

Threat Detection & Vulnerability Management:

• Proactively analyze various data sources to detect IT phenomena and emerging cyber threats to 1GNC services.

• Assess cybersecurity aspects of non-standard amendment proposals without architectural impact.

• Conduct real-time, reactive analysis and interpretation of correlated log data during escalations from senior analysts.

Incident Response & Mitigation:

• Determine the impact of identified threats and vulnerabilities.

• Decide on and commission mitigating measures for unknown threats without architecture impact.

• Monitor the execution of mitigation orders.

Escalation & Coordination:

• Escalate vulnerabilities and threats impacting the architecture within 1GNC.

• Decide on and execute the escalation of threats outside 1GNC to relevant NATO, German (DEU), or Dutch (NLD) security organizations.

Analysis & Documentation:

• Conduct forensic and internal investigations on behalf of competent authorities.

• Document all findings, analyses, and chosen solutions.

• Support threat analysis and the development of risk profiles.

Process & System Management:

• Ensure the operational quality of connections between external systems and 1GNC equipment.

• Assist in keeping LSOC processes, procedures, and work instructions up-to-date.

Advisory & Collaboration:

• Participate in working groups and meetings according to the HQ's battle rhythm.

• Act as an information security advisor to the Chief Information Assurance.

Essential Qualifications & Experience:

• Proven working experience in a multi-national environment.

• Proven experience in working in a SOC (Security Operation Center).

• Experience in Security Information and Event Management

• Experience in Cyber Incident Management.

• Experience/training/education with SIEM -LOGPoint, Elastic, Splunk.

• Experience with Incident handling - TheHive, Microsoft SCSM, Greenbone,Trellix EPO.

• Experience with Cyber Threat intell -MISP -Security Analytic

• Advanced English skills

Nice to have:

• Knowledge of communications and/or information networks is preferred.

• Experience with IT-Consulting is preferred.

• University or bachelor degree of Science is preferred.

• Experience with Business informatics is preferred.

• Certificate in EC-Council and ITIL is preferred.

• Experience with MS SharePoint is preferred

• Proficiency in the German language is preferred.

• Knowledge about setting up a incident handling process for an area with inceased security requirments is preferred

If you've read the description and feel this role is a great match, we'd love to hear from you! Click "Apply for this job" to be directed to a brief questionnaire. It should only take a few moments to complete, and we'll be in touch promptly if your experience aligns with our needs.