SO G6 LSOC SR ANALIST.

Aanvraagnummer: 38899
Contractvorm: Detachering
Organisatie: Ministerie van Defensie
Locatie: Amsterdam - Noord-Holland
Uren per week: 32 per week
Tarief: Geen maximum
Duur van de opdracht: 0 maanden
Regio: Noord-Holland
Startdatum: 30-10-2026
Optie tot verlenging: Mogelijk, maar nog niet bekend
Sluitingsdatum: 25-05-2026 07:00

LET OP! Reacties dienen minimaal 1 werkdag voor de sluitingsdatum binnen te zijn voor tijdige verwerking.

eCF-profiel
Deze opdracht is gebaseerd op het European e-Competence Framework (e-CF). Dit is een Europese standaard voor het beschrijven van IT-competenties en het bijbehorende niveau van verantwoordelijkheid.

Het eCF-profiel geeft aan welke competenties en op welk niveau (e-1 t/m e-5) van de kandidaat verwacht worden.

Wij verwachten dat kandidaten in hun cv duidelijk aantonen dat zij over deze competenties beschikken. Dit kan door per relevante opdracht of functie te beschrijven:

• welke rol de kandidaat vervulde
• welke werkzaamheden en verantwoordelijkheden daarbij hoorden
• in welke mate deze aansluiten op de gevraagde eCF-competenties en het niveau
• Cv’s waarin de gevraagde eCF-competenties niet aantoonbaar terugkomen, kunnen niet volledig worden beoordeeld op geschiktheid.

Description Assignment / Full Job Description
Role: Local Security Operation Center (LSOC) Analyst Sr

Mapping cybersecurity risks and threats from a technical perspective and translating them into products used by 1GNC, by:

• Performing threat analysis from a technical perspective
• Risk profiling from a technical perspective
• Ensuring the development and evaluation of technical use cases
• Assessing and identifying use cases from a technical perspective
• Developing technical use cases and evaluating and proposing improvements
• Ensuring the development and evaluation of threat and vulnerability mitigation measures
• Assessing and identifying threat books from a technical perspective
• Preparing highly complex threat books

Detects cybersecurity vulnerabilities and threats by:

• Assessing non-standard change proposals with architecture impact on cybersecurity aspects, including participation in multidisciplinary IM/IT projects
• Proactively analyzing and interpreting sources to detect IT phenomena that pose a new threat to the provision of services and documenting the findings
• Ensuring real-time analysis and interpretation of correlated log data and other sources based on known threats
• Providing real-time reactive analysis and interpretation of correlated log data and other sources in case of escalation by other analysts

Takes mitigating measures to address or prevent threats and vulnerabilities of any size and complexity, by:

• Determining the impact of identified threats and vulnerabilities and deciding on mitigation measures to be taken
• Commissioning mitigating measures
• Monitoring mitigation orders issued
• Deciding on escalation of vulnerabilities and threats outside the 1GNC

Escalating vulnerabilities and threats to NATO/DEU and NLD within the security domain:

• Acting as security disaster manager during working hours
• Identifying business impact indicators

Ensures the management of the information, data and processes used within 1GNC:

• Ensuring the operation and quality of the connection of external system content to 1GNC equipment
• Ensuring the management of the source data used within 1GNC including asset model and network model
• Ensuring the management of the use case database
• Ensuring that the relevant processes, procedures and work instructions are kept up to date
• Establishment of technical maintenance and equipment frameworks within 1GNC

Explanation of the assignment and its objectives
Within the G6 branch: ensuring a reliable, effective, secure and uninterrupted use of all relevant C2IS and CIS-systems in the PHQ and upon activation during operations.

Additional: participating in working groups and meetings according to the battle rhythm of 1GNC, acting as information advisor to Chief Information Assurance and as Cyber advisor in the HQ in all aspects of C2 support, CIS, HQ organization as well as information security.

The location for this position will be at the HQ 1 GNC (Headquarter), Schlossplatz 15, 48143 Muenster. All tasks related to the job are to be executed from 1GNC, Münster, Germany.

Candidate should be willing to work in Münster the whole week.
Kind request to also try to identify candidates that are already living in Germany, or candidates with a German background.
NATO clearances are applicable.
Language of instruction is English.

Organisation context and culture
1GNC is a multi-national Headquarter environment where military and civilians work closely together. It contains mainly German and Dutch personnel.

Languages within the HQ are mandatory English; preferable is also German and/or Dutch. Because of this, the CV has to be delivered in English.

Generic Description of required competence and levels
Implementeert informatiebeveiligingsbeleid. Controleert en onderneemt actie tegen indringers, fraude en beveiligingslekken of lekken. Zorgt ervoor dat beveiligingsrisico's worden geanalyseerd en beheerd met betrekking tot bedrijfsgegevens en -informatie. Evalueert beveiligingsincidenten, doet aanbevelingen voor beveiligingsbeleid en -strategie om continue verbetering van de beveiliging te garanderen.

Summary of Task and Mission
Leidt en beheert het beveiligingsbeleid voor organisatie-informatie.
Definieert de informatiebeveiligingsstrategie en beheert de implementatie in de hele organisatie. Integreert proactieve bescherming van informatiebeveiliging door de hele organisatie te beoordelen, te informeren, te waarschuwen en op te leiden.

Tasks

• Definieer de strategie en normen voor informatiebeveiliging
• Draag bij aan de ontwikkeling van het beveiligingsbeleid van de organisatie
• Beheer beveiligingsaudits
• Evalueer risico's, bedreigingen en consequenties
• Opzetten en beheren van preventie-, detectie-, correctie- en saneringsplannen
• Informeren en sensibiliseren bij het algemene management en bij alle IT-gebruikers en professionals
• Voer informatiebeveiligingsoperaties uit

MANDATORY QUALIFICATIONS

• eCF3 Senior Professional /Manager: Candidate has proven working experience in a multi-national environment.
• eCF3 Senior Professional /Manager: Candidate has proven experience in working in a SOC (Security Operation Center).
• eCF3 Senior Professional /Manager: Candidate has proven experience in Security Information and Event Management.
• eCF3 Senior Professional /Manager: Candidate has proven experience in Cyber Incident Management.
• D.03 Opleiding en training: Candidate has experience/training/education with SIEM - LOGPoint, Elastic, Splunk.
• D.03 Opleiding en training: Candidate has experience with Incident handling processes - Security of critical infrastructures.
• D.03 Opleiding en training: Candidate has experience with Cyber Threat intell - MISP - Security Analytics.
• Candidate is proficient in English at level 3332.

DESIRABLE QUALIFICATIONS

• Knowledge of communications and/or information networks is preferred.
• Certified in Risk and Information Systems Control is preferred.
• University Master of Science Cybersecurity and Digital Forensics is preferred.
• Certified in ITIL is preferred.
• Cyber Threat intell Course is preferred.
• Cisco Certified Network Associate Course.
• Open-Source Intell Course is preferred.
• Proficiency in the German language is preferred.
• Knowledge about Incident handling process for an area with increased security requirements is preferred.

Aanvullende Informatie
Extra informatie: Ter verduiding voor deze aanvraag zal je volledig in Munster (D) aanwezig zijn.