Senior Security Event Analyst

Enterpryze Consulting Ltd.

전망: 195

갱신일: 26-11-2025

위치: Mons Hainaut

범주: IT-소프트웨어 IT-하드웨어 / 네트워킹 정보 기술 경영진 기계 / 기술 유지

산업:

Loading ...

작업 내용

Senior Security Event Analyst


  • Working Location:Mons, Belgium
  • Security Clearance:NATO Secret / SC
  • Language:High proficiency level in English language


EXPERIENCE AND EDUCATION:


Essential Qualifications/Experience:

· University degree at a nationally recognised/certified University in a technical subject with substantial Information Technology (IT) content and 4 years of specific experience. Exceptionally, the lack of a university degree may be compensated by the demonstration of particular abilities or experience that is/are of interest to NCI Agency; that is, 7+ years extensive and progressive expertise in the duties
· Expert level in 3+ of the following areas and a high level of experience in several of the other areas
ü Security Incidents Event Management products (SIEM) – e.g. Splunk
ü Network Based Intrusion Detection Systems (NIDS) – e.g. SourceFire, Palo Alto Network Threat Prevention
ü Host Based Intrusion Detection Systems (HIDS)
ü Full Packet Capture systems – e.g. Niksun, RSA/NetWitness
ü A variety of Security Event generating sources (e.g. Firewalls, IDS, Routers, Security Appliances)
ü Computer forensics tools (stand alone, online and network)
ü Computer incident response centre (CIRT), computer emergency response team (CERT)
ü Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc)
· Proficiency in Intrusion/Incident Detection and Handling
· Comprehensive knowledge of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications


Desirable Qualifications/Experience:

  • Industry leading certification in the area of Cybersecurity such as GCIA, GNFA, GCIH
  • Solid knowledge and experience in Splunk Enterprise Security suite
  • A good understanding of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection of CIS infrastructures
  • Solid knowledge and experience in monitoring threats in a cloud environment
  • A solid understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)


DUTIES/ROLE

  • Provide detailed analysis of logs and network traffic and make security event determinations on alarm severity delivering detailed investigation and remediation activities as member of the Cyber Security Service Line
  • Conduct detailed investigation and research of security events within NATO Cyber Security Centre (NCSC) team
  • Analyze firewall, IDS, anti-virus and other network sensor produced system security events and present findings
  • Provide detailed technical reports about incidents and capability improvements
  • Share security event/incident information with stakeholders via presentations and technical reports
  • Appropriately leverage the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc) to identify malicious activity
  • Recommend improvements to enable enhancing investigations
  • Provide Subject Matter Expertise supporting the end-to-end Cyber Security Incident Handling process
  • Propose possible optimisations and enhancement which help to both maintain and improve NATO’s Cyber Security posture
  • Conduct technical reports and presentatitions regarding his area of responsibility
Loading ...
Loading ...

마감 시간: 10-01-2026

무료 후보 신청 클릭

대다

작업 보고
Loading ...

동일한 작업

Loading ...
Loading ...