Spezialist*in Security Incident Management im ISMS

Job Posting Organization:
The organization is GIZ (Deutsche Gesellschaft für Internationale Zusammenarbeit), which focuses on international cooperation for sustainable development. Established in 2011, GIZ operates in over 120 countries worldwide, employing around 22,000 staff members. The organization aims to promote sustainable development and improve the living conditions of people in developing countries through various projects and initiatives.

Job Overview:
The position of Specialist in security" style="border-bottom: 1px dotted #007bff !important;">Security Incident Management within the Information Security Management System (ISMS) is crucial for ensuring the confidentiality, availability, and integrity of information at GIZ. The role involves enhancing the existing structures and processes within the operational ISMS to effectively manage information security incidents. The new hire will be part of the Incident Response Team (IRT), which is responsible for coordinating responses to security incidents, collaborating closely with Information Security Officers (ISOs) in country offices, and working with the Cyber Security Operation Center (CSOC) on IT-related incidents. The position requires a proactive approach to risk mitigation, conducting after-action reviews, and ensuring the implementation of security measures. Additionally, the specialist will be involved in the development and maintenance of processes for detecting, analyzing, and resolving information security incidents, as well as contributing to documentation and reporting efforts.

Duties and Responsibilities:
The duties and responsibilities of the Specialist in Security Incident Management include: coordinating incident response for information security incidents, including escalation processes and forensic measures; managing information security incidents using a ticketing system in collaboration with other team members in the IRT across global locations; working closely with ISOs in country offices during security incidents; collaborating with the CSOC on IT-related security incidents; engaging with the ISB/CISO and corporate crisis management during severe incidents; developing risk mitigation measures and conducting after-action reviews; maintaining and implementing processes for the detection, analysis, and resolution of information security incidents; creating and updating documentation and reports; participating in other ISO/IEC 27001 process areas to support team tasks, such as following up on open measures from risk assessments, internal audits, and revisions; providing conceptual and advisory support for determining protection needs and proposing measures in risk assessments; assisting in conducting security audits; and contributing to the design and implementation of awareness-raising measures or advising on processes, requirements, and general information security topics.

Required Qualifications:
The required qualifications for this position include: a completed degree in information security, computer science, or a comparable field, or equivalent training with relevant professional experience; several years of experience in information security management and incident management, particularly within an Incident Response Team (IRT); strong problem-solving skills, stress resistance, and the ability to act quickly and effectively in critical situations; in-depth knowledge of ISO/IEC 27001 and/or the German Federal Office for Information Security (BSI) IT baseline protection; knowledge and experience in data protection (BDSG/DSGVO) and/or emergency management (ISO 22301/BSI 200-4); solid understanding of IT technologies and methods, IT standards, and knowledge of IT systems and operations, particularly current IT security standards and IT applications involved in ISMS processes; relevant personnel certifications in ISO/IEC 27001 and/or based on BSI IT baseline protection or other certifications relevant to information security; teamwork skills in collaborating with colleagues and committees on security incidents; and fluent German and English language skills.

Educational Background:
The educational background required for this position includes a completed (technical) university degree in information security, computer science, or a comparable field. Alternatively, a comparable vocational training with relevant professional experience is acceptable. This educational foundation is essential for understanding the complexities of information security and incident management.

Experience:
The level of experience needed for this position includes several years of professional experience in information security management and incident management, particularly within an Incident Response Team (IRT). This experience is critical for effectively handling security incidents and collaborating with various stakeholders within the organization.

Languages:
The mandatory languages for this position are fluent German and English. Additionally, knowledge of French or Spanish is considered a desirable asset, enhancing communication capabilities in a diverse working environment.

Additional Notes:
The position is suitable for full-time or part-time employment, with a requirement for regular business travel. Candidates should be aware of the specific vaccination regulations for entry and work in the host country. The organization values the willingness of employees to be deployed at all GIZ locations both domestically and internationally. Applications are only accepted through the organization's e-recruiting system, and candidates are advised to check their spam/junk folders for confirmation emails from the system.