Cyber Security Officer

About the role

The Cyber Security Officer will lead a small team responsible for protecting NATO information systems at Ramstein. You will oversee day‑to‑day security operations, manage audits, and support the implementation of security controls across the enterprise.

Key responsibilities

• Apply and maintain security controls in line with organisational policy and risk assessments.
• Communicate security risks to business managers and perform basic risk assessments for small information systems.
• Identify risks in technical solution architectures and propose counter‑measures.
• Define secure system configurations and support investigations of suspected attacks.
• Lead a team of 3‑4 Cyber Security and COMSEC personnel.
• Administer Cyber Security activities in coordination with the NATO Cyber Security Centre, including boundary protection, data loss prevention and antimalware.
• Schedule, coordinate and facilitate security audits and manage post‑audit actions.
• Supervise monitoring, testing and evaluation of computer security systems and CIS accreditation.
• Plan and implement Cyber Security services for various Agency elements.

Required profile

• Valid NATO COSMIC TOP SECRET‑ATOMAL clearance (CTS‑A) at time of contract.
• Minimum 5 years experience in Windows Server security hardening.
• At least 3 years with Trellix ePolicy Orchestrator and Trellix Endpoint Security (including DLP and Application Control).
• 2 years experience in system security, security architecture, network security engineering, governance and risk management.
• CISM or CISSP certification.

Required skills

• Windows Server security hardening
• Security baselines implementation
• Policy enforcement and vulnerability mitigation
• System compliance management
• Trellix ePolicy Orchestrator
• Trellix Endpoint Security
• Trellix Data Loss Prevention
• Trellix Application Control
• IPv4 networking
• Software‑based firewalls
• VPN technologies
• Intrusion Detection Systems
• Forensic tools
• Wireless LAN technologies
• Mobile device endpoint security
• Security incident handling
• Cyber Security audit interpretation
• Risk assessment and vulnerability mitigation