GEA is one of the largest suppliers for the food and beverage processing industry and a wide range of other process industries. Approximately 18,000 employees in more than 60 countries contribute significantly to GEA's success – come and join them! We offer interesting and challenging tasks, a positive working environment in international teams and opportunities for personal development and growth in a global company.
Information Security, Business Continuity & Crisis ManagementPosition type: Full time
Your responsibilities and tasks:Accountable for managing all kinds of security incidents, their reporting and follow-up.
Accountable for the coordination for fault clearance, optimization, and success control for all security incidents.
Responsible for the coordination of complex IT disturbances and tracking from escalation cases to the solution.
Responsible for the targeted and effective identification of root causes and elimination of error sources and security gaps.
Coordinates with the responsible IT Service Owner, IT departments, physical security and facility management departments, data protection, and HR.
Defines the Security Incident Management policies, procedures, and processes, steers and coordinates their technical implementation (e.g., ServiceNow) and aligns those with other incident management processes.
Involved in improving emergency and crisis processes, their documentation, and corresponding planning.
Responsible for the planning and resource availability required for fault clearance implementation and monitors the documentation of the fault clearance progress.
Coordinates and steers the external Security Incident analysis and response providers (Security Operation Center).
Coordinates with external security incident response & digital forensics service providers.
Defines Key Performance Indicators (KPIs) and monitors those.
Point of information for all information on critical faults.
Ensures, analyses and improves reporting channels.
Prepares and improves the existing key figure analyses and supplements suitable ones for his field of activity.
Receives reports of monitoring systems and improves this process.
Communicates with authorities (in alignment with CISO).
Works with the sales/communications department on the design and implementation of publications on security incidents to customers.
Is the contact for all BISOs, RISOs and LISOs in whose area of responsibility security incidents have occurred or may have occurred.
Your profile and qualifications:Bachelor or Master's degree in Information Technology/Computer Science/Cybersecurity, Business Administration, or a related technical discipline.
Information security Certifications (CISM: Certified Information Security Manager, ISMS Lead Implementor, ISMS Lead Auditor).
IT (Security) Certifications (e.g., ITIL: Information Technology Infrastructure Library, COBIT: Control Objectives for Information and Related Technology).
5+ years of experience related to Cyber- or Information Security in the IT production environment.
Several years of related work experience in IT-Service-Delivery / IT-Operations / IT-Architecture.
Very well knowledge of cyber security technologies and methods (threat landscapes, models, standards) as well as in network technologies and network security (routers/switches, firewalls, IDS/IPS, SIM/SIEM, endpoint security).
Experience in Linux and Windows infrastructures (for forensic analysis and countermeasures), network architectures, and application operations and hardening.
Experience in system and network design.
Experience in O365 and Azure Security.
Knowledge about standard methodologies related to networking and system security.
Experience with Authorization and authentication procedures for network, computer, and applications.
Knowing security standards such as ISO, PCI, HIPAA, and SOX.
Knowledge about monitoring and security software such as IDS and IPS.
Experience with firewalls.
PKI knowledge.
Knowledge about encryption technology.
Experience with network protocols such as TCP, UDP, IPSec, SSL, and DNS.
Experience in multivendor Management and dealing with multiple suppliers.
Interpersonal skills in communication and collaboration.
Strong communication skills, in English; local language is a plus.
Strong analytical ability, business acumen, problem-solving skills.
Capabilities in financial & budget ownership.
GEA is an equal opportunity employer. Applicants will therefore receive consideration for employment without regard to age, sex, race, color, religion, world view, national origin, genetics, disability, gender identity, marital status, sexual orientation, veteran status or any other protected characteristic required by applicable law. Applicants with disabilities are welcome and will be given special consideration if they are equally qualified.
Join a top employerGEA is certified as a Top Employer by the Top Employers Institute for Europe. We have high scores for Leadership, Ethics & Integrity, and Sustainability.
A world of opportunitiesWe're a global industrial engineering company and one of the world's largest systems suppliers for the food, beverage, and pharmaceutical sectors, and many others. GEA offers exciting and diverse training and career opportunities around the world.#J-18808-Ljbffr