Associate Lead Security Expert IT-Security Engineering & Automation (m/w/d)

As a primary digitization partner of the Bundeswehr, we provide stable, safe and efficient IT services in Germany and abroad, from basic operations to the field close to the application and thus contribute to the continuous increase in the leadership and operational capacity of the Bundeswehr. With over 7,000 colleagues, we operate and modernise one of the largest and most complex IT infrastructures in Germany. We are looking for responsible IT specialists who are convinced that the Bundeswehr-IT will further develop in challenging digitalization projects and thus contribute to Germany's security. Together with us, you are worried about the future digital capability of the Bundeswehr. Senior Account Manager (m/w/d) from now on and in full time in Bonn or Cologne. In the area of Cyber Defense Center (CDC) and the Security Operations Center (SOC) of BWI, security-relevant systems and networks are monitored and sensor systems for detecting attacks on IT infrastructures are evaluated by IT security analysts. We are part of the Competence Center IT-Security (CCITS) in which the IT, information and cyber security competencies are centralized within the CDO division of BWI. Security Engineering & Automation is part of the Cyber Defense Center and deals with (part-)automated detection of potential IT security incidents that are subsequently processed in the SOC.

Self-building, configuration and administration of Linux-based IT security systems Working with security projects to support the connection of new data sources to the SIEM system Care and care of the rules used in the SIEM system Responsibility for creating and developing use cases in the SIEM system and playbooks in the SOAR system Responsibility for optimizing the procedure for using case and playbook creation Creation of a map for your own department and the Security Operations Center to display the KPIs of Use Cases and Playbooks They contribute to the optimization of IT security engineering & automation processes Normalization of log data Creation of small scripts for normalization and pseudonymization Project work in the Advanced Cyber Security Program

Successfully completed studies focusing on computer science or IT security or comparable training Experience with SIEM/SOAR systems and architectures Very good knowledge of Linux and network technology Very good knowledge of log data, log formats and normalization of logs Ready to work independently in new architectures / systems and their logs to develop use cases Knowledge of Python scripting and in the ELK stack area desirable Ready to call Own initiative, pronounced analytical skills, high understanding and structured work Good communication and team skills German and English skills

Through diverse and socially relevant tasks, we ensure Germany's IT security and sustainability As the primary digitization partner of the Bundeswehr, we enable and support in peace, crisis and war The BWI offers a market-oriented remuneration, a secure workplace and a premised and employee-funded occupational pension scheme We support your professional and personal training through individual measures and free access to LinkedIn Learning and the BWI Academy offers You can build a value balance account in order to use it in perspective, e.g. for a Sabbatical Mobile work is possible in numerous European countries on 20 days a year You will receive a digital value card that will be charged monthly and available to you You can lease your desired bike and calculate it with reduced gross salary conversion JOBV1_EN