IT Security Specialist (d/m/f) in the Technical Information Processing Group

Working in our IT is really special: especially personally. Especially open. And very varied. Your know-how is in demand here when it comes to making the technical and digital future of the administration innovative and secure and enabling modern, effective and targeted communication with contacts in the house and outside. At the next possible date we will look for you in full time as IT security specialist (d/m/w) in the field of technology-supported information processing. In the case of a suitable application, an occupation in part-time is possible. The employer The Hansestadt Buxtehude is a special employer: A modern service-oriented local administration with more than 700 employees – extraordinary people who engage with expertise, creativity and sense of responsibility in different areas. For our self-confident city. For sustainable projects. And for the people who live here.

Put on a trusted working culture – characterized by respect and tolerance. Make your potential full. We offer you room for co-design. Take advantage of your chances. We promote your development. Find your balance. Various working time models or teleworking can be individually adapted to your life phase. Stay on the ball with us. About actions to promote a healthy lifestyle – with the aim of preserving, strengthening or restoring your health. Be sure. We offer unlimited employment. Put on a fair remuneration. You will receive a fee up to the pay group 10 TVED plus the usual benefits in the public service.

Together with the IT Security Management team, you as a cyber security expert (d/m/w) are responsible for the ongoing analysis of cyber threats. They monitor IT systems with regard to security aspects. They identify and evaluate IT security risks and control against. They use appropriate tools, perform regular penetration tests and analyses and are firmly integrated into our vulnerability management. They carry out protection needs analyses of the software, hardware and systems used and implement the corresponding protection measures. They conceptualize security projects and implement them independently. They monitor, report and document security incidents, including incident response. You create our security documentation and continue to write it. You sensitize employees, perform trainings, workshops and awareness trainings as well as phishing tests with your findings.

They have completed vocational training or studies in the field of computer science. You have a multi-year professional experience in the environment of IT security, i.e. experience in the processing of security incidents and in vulnerability management. If you have experiences with tools like SIEM, EDR or vulnerability scanners, this is advantageous. They ideally have knowledge of information security-relevant standards and standards (ISO 27001, BSI basic protection) and certifications such as the CISSP. They are desirablely versed in the configuration of switches, routers and firewalls and have knowledge in the field of network security. You have very good German knowledge in word and writing and good English knowledge. They bring with them the ability to work independently, teamwork, flexibility as well as a careful and organized way of working. You have the driving class B. JOBV1_EN