About this job

DLR GfR mbH is a company providing reliable, safe and secure aerospace services. We operate and manage the constellation of Galileo satellites in the Galileo Control Center Oberpfaffenhofen on behalf of the European Commission. 
Our company headquarters is located in an area widely known as a holiday destination –  the five-lakes region in Upper Bavaria near Munich. At the space industry location in Oberpfaffenhofen, our around 230 employees work every day in international and interdisciplinary teams on the navigation for the future. Become a part of us!

Responsibilities

The Security group within DLR GfR mbH is responsible for the security of Galileo IT applications. As Information Security Analyst for the Galileo project you are responsible within the Security Department for the regular analysis of security risks according to the requirements of the Galileo client (European GNSS Agency) as well as the verification of the implementation of adequate security measures and also support security audits.

Your responsibilities include:

• Independent monitoring and analysis of the regularly running procedures and applications in information security, such as access protection, encryption, configuration control, vulnerability analysis, malware detection, database activities and verification of implementation (focus on the Galileo networks and systems)
• review and analysis of event logs to detect anomalies in the local security environment and harmful activities in the Galileo local system; development of proposals for dealing with them
• identification of potential threats to information and communication systems by evaluating the results of technical monitoring tools, in conjunction with local and global risk analyses in the Galileo system
• Support in the evaluation and reporting of forensic investigations
• Processing the security risk register, with a focus on the Galileo project
• Regular internal audits of the Galileo security environment, recording of measures and follow-up
• Development of training materials and regular training of project staff in connection with security incident response methodologies
• Regular reporting to the Site-Infosec team, rapid escalation in the event of a concrete threat situation in the IT area
• Regular review and documentation of the system against the security requirements defined by the customer
• Responsible for regularly checking security relevant logs (locally and remotely)

Profile

• Completed Bachelor’s degree in computer science or comparable education
• Many years of experience in the IT sector
• Many years of professional experience in the security industry
• Knowledge of national legal requirements as well as international standards in information security (e.g. secrecy protection in the economy (BMWi), NIST, ISO 27001, etc.)
• Practical knowledge of technologies and common threats in network security
• Readiness for safety inspection according to SÜG
• Business fluent German and English, written and spoken
• Confidentiality and reliability