<div class="show-more-less-html__markup show-more-less-html__markup--clamp-after-5 relative overflow-hidden"> <strong>About The Company<br/><br/></strong>The Stadtwerke Verkehrsgesellschaft Frankfurt am Main mbH, commonly known as VGF, is the primary public transportation provider in Frankfurt. As a vital component of the city's infrastructure, VGF operates the comprehensive network of subways and trams that facilitate seamless mobility across Frankfurt. With a fleet of approximately 400 rail vehicles serving nine subway lines and ten tram lines, VGF ensures that residents and visitors can travel efficiently and sustainably throughout the city. Employing over 2,750 dedicated professionals across various departments, the company is committed to providing safe, reliable, and environmentally friendly transportation services. VGF also plays a proactive role in shaping the future of urban mobility by developing innovative solutions and embracing technological advancements.<br/><br/><strong>About The Role<br/><br/></strong>We are seeking a highly skilled Cyber Security Analyst (D/M/W) to join our team at VGF. In this role, you will be responsible for safeguarding our information systems and infrastructure against cyber threats. Your expertise will support the implementation of legal and regulatory requirements related to information security, and you will play a crucial role in conducting internal audits, coordinating penetration tests, and liaising with external agencies such as the Federal Office for Information Security (BSI). The position offers an exciting opportunity to contribute to the security and resilience of Frankfurt’s public transportation network, ensuring the safety of our operations and data. You will work closely with internal teams, external security partners, and regulatory bodies to develop and maintain a comprehensive security posture that aligns with industry best practices and compliance standards.<br/><br/><strong>Qualifications<br/><br/></strong>The ideal candidate will possess a degree in Computer Science, IT Security, Business Informatics, or a related field, complemented by relevant professional experience in cyber security. You should have several years of practical experience in IT security, preferably within critical infrastructure or regulated environments. Strong knowledge of vulnerability and patch management, security alerts, and incident response processes is essential. Familiarity with security technologies such as SIEM, EDR/XDR, IDS/IPS, and vulnerability scanners is required. A solid understanding of network, system, and cloud architectures, along with experience in risk assessments and security by design principles, is crucial. Your analytical and structured working style will enable you to effectively evaluate threats, implement security measures, and support continuous improvement initiatives.<br/><br/><strong>Responsibilities<br/><br/></strong><ul><li>Plan, execute, coordinate, and monitor vulnerability management and patching activities in close collaboration with IT and OT teams, including risk assessment, prioritization, and effectiveness evaluation.</li><li>Analyze, evaluate, and prioritize security alerts, optimizing detection use cases and reducing false positives to enhance overall security monitoring.</li><li>Detect, analyze, and respond to cyber security incidents, including incident response, technical forensics, and post-incident analysis to derive lessons learned.</li><li>Conduct vulnerability, threat, and risk analyses based on internal insights and external threat intelligence sources such as CVEs, CERT reports, darknet monitoring, and vendor advisories.</li><li>Support the technical hardening of systems, networks, and cloud environments through secure configurations and baseline standards, adhering to security by design principles.</li><li>Assess security requirements for new IT projects, architecture changes, and operational models, ensuring compliance with relevant regulations and standards.</li><li>Assist in implementing and maintaining legal and regulatory compliance within the critical infrastructure sector, including NIS2 and BSIG directives, providing technical support for reporting, documentation, and audits.</li><li>Collaborate with internal IT/OT teams, Business Continuity Management, and external security service providers such as SOC, CERT, and penetration testers to enhance cybersecurity resilience.</li><li>Prepare technical reports, security status updates, and documentation for management, audits, and supervisory authorities, ensuring transparency and accountability in security practices.<br/><br/></li></ul><strong>Benefits<br/><br/></strong><ul><li>We offer a permanent employment contract with tariff-based salary according to TV-N Hessen, along with additional attractive benefits such as an annual bonus, performance-based incentives, and a company pension scheme through the city of Frankfurt.</li><li>Enjoy a 38-hour workweek aligned with collective agreements, complemented by a flexible working hours model. Depending on your role, remote work options may also be available.</li><li>Take advantage of 30 vacation days per year, plus two additional days off during Christmas and New Year’s, along with up to 12 extra flexible days annually.</li><li>Gain access to over 10,000 fitness and wellness facilities through the employer-sponsored EGYM Wellpass program.</li><li>Participate in regular raffles for tickets to cultural and sporting events, enhancing your leisure and entertainment options.</li><li>Benefit from professional development opportunities via our VGF-Akademie, a mini-educational program that covers personal and technical growth, with costs covered by the company.</li><li>We promote work-life balance and have been certified since 2016 under the audit berufundfamilie, supporting family-friendly policies and flexible arrangements.<br/><br/></li></ul>Equal Opportunity<br/><br/>We are committed to fostering an inclusive workplace that values diversity and equal opportunity. VGF encourages applications from individuals of all backgrounds, regardless of gender, age, ethnicity, sexual orientation, religion, disability, or social origin. We believe that a diverse team enriches our organization and enhances our ability to serve the community effectively. Join us in shaping the future of mobility in Frankfurt and contribute to a workplace where everyone can thrive. </div>