Senior Systems Engineer (CIS Security/INFOSEC Officer)

Contenido de trabajo

• Working Location: Braine LAlleud, Belgium
• Security Clearance: NATO Cosmic Top Secret
• Language: High proficiency level in English language
  

• A minimum requirement of a Bachelors degree at a nationally recognised/certified University in an Information Security related discipline and 3 years post-related experience
• Or, exceptionally, the lack of a university degree may be compensated by the demonstration of a candidates particular abilities or experience that is/are of interest to NCI Agency, that is, at least 10 years extensive and progressive expertise in duties related to the function of the post
• 3+ years experience within any 3 of the following areas: system security, security architecture, network security engineering, security governance including strategic alignment, security audit, risk management, performance management and value delivery
• Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) or Certified Information System Manager (CISM)
• Detailed knowledge and working experience of network and security technologies such as IPv6, BGP, Firewalls, Virtual Private Networks, Intrusion Detection and Forensic Appliances
• Detailed knowledge and working experience of network and security technologies such as IPv4/IPv6, IPsec, routing protocols, Firewalls, Virtual Private Networks, Intrusion Detection and Forensic Appliances
• Experience with high-availability/redundant systems architectures (clusters & load-balancers)
  

• Knowledge and working experience of Public Key Infrastructure
• Knowledge and working experience of securing network devices and Windows/UNIX based operating systems
• Experience with WLAN technologies and endpoint security of mobile devices such as Laptops, PDAs and Smartphones devices
• Knowledge of mobile data communications, in particular satellite or maritime solutions
• Knowledge of NATO responsibilities and organization to include NATO Security Policy and supporting directives
• Understanding of INFOSEC in NATO or NATO member nation environment
• Prior experience of working in an international environment comprising both military and civilian elements
  

• Supporting all technical development activities required to maintain the confidentiality, integrity and availability of NIMSC operational business networks
• Maintain personal core competencies (functional and technical) in Information Assurance, supervise staff and Subject Matter Experts (SME) temporarily assigned to the section
• Planning and coordinating, in close corporation with NATO Cyber Security Centre, the internal development of security architectures for large-scale systems, networks, and infrastructure solutions
• Applying excellent expertise and providing recommendations in the development of conceptual, logical, and technical security architecture
• Applying knowledge of a variety of hardware and software security capabilities and features
• Resolving security and non-security requirement conflicts, and collaborating with team leaders, scientists and developers to appropriately convert functional needs into technical security requirements
• Coordinating with systems and network administrators in support of security architecture requirements
• Identifying security-related Key Performance Indicators and generating reports to ensure full visibility of the overall NCIA Information Security posture
• Coordinating and overseeing vulnerability assessment and penetration tests performed on NIMSC systems; overseeing remediation activities and reporting on progress
• Supporting all phases of the security accreditation processes required to maintain operational status
• Maintaining the NIMSC CIS Security Risk and Issue Register
• Planning, deploying, and configuring a variety of hardware, software, and security products
• Providing feedback, advice and guidance to senior management in the areas of enterprise architecture, NATO security accreditation activities, procurement as well as training and awareness programmes
• Conducting INFOSEC training and awareness programmes
• Contribute to the Business Continuity Plan in the NIMSC CIS Security area
• Deputize for higher grade staff, if required
• Performs other duties as may be required