Incident Handling Engineer

Location: 

Europa / Europe

Nato clearance: 

YES

Job description: 

LOCATION: Mons, Belgium
CLIENT: NATO
DURATION: 1 year
CONTRACT: Consultant
SALARY: Negotiable daily rate
CLEARANCE: NATO Secret
 
TASKS:
Provision of 24/7 Incident Response (TRIAGE, Contain, Eradicate, Recover) activities, during normal working hours and on-call duties, including weekends and holidays
Deliver of technical co-ordination, support and assistance in respect of Cyber Security Incident Response to the RSM Theatre Information Assurance (IA) Office and the KFOR CIS Security Office
Technical coordination, as required, with NATO Nations, Partner Nations, non-Governmental Organisations and Industry partners
Provision of technical support to forensics investigations
Cyber Security Incident-related research Incident reporting activities in support of RSM and KFOR, reporting Security Incidents to the appropriate Theatre IA/Security Office as required Production of Standard Operating Procedures covering all aspects of Incident Response (TRIAGE, Contain, Eradicate, Recover) activities, in coordination with the respective theatre of operations’ stakeholders
Analysis, interpretation and dissemination of Security Advisories and Threat Intelligence Reports from NATO Nations, Partner Nations, non-Governmental Organisations and Industry partners
Research to identify, document and implement improvements to the Incident Response (TRIAGE, Contain, Eradicate, Recover) activities in order to enhance and optimise current best practice to meet new and developing threats
Co-ordination and preparations of reports, recommendations and presentations to the respective Theatre IA/Security Offices on all aspects of Incident Response (TRIAGE, Contain, Eradicate, Recover)
Co-ordinating simultaneously the activities of multiple NATO Site-level Incident Response Teams
 

 

Job requirements: 

A Bachelor Degree in Computer Security or related discipline at a nationally recognised/ certified University in the related discipline or an Advanced IT-related university degree
Exceptionally, the lack of a university degree may be compensated by the demonstration of particular abilities or experience of interest to the Agency
Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management, technical and non-technical)
Comprehensive understanding of the principles of Computer and Communication Security, networking, and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience
Experience in the implementation and integration of Cyber Security protective measures
Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response Team
Experience in interpreting the results of CIS Technical Security/Vulnerability Assessments
Practical hand-on experience in System and Network administration to include Network (TCP/IP) Engineering
Experience of the management of CIS Service Delivery
 

Additional information: 

Degree in IT or CIS security related discipline
Experience in working in a theatre of operations or in deployed military force in a CIS or cyber position
Member of a recognized professional IT or CIS body or institution
Additional Professional Qualifications: CISSP, GCIH, GCIA/GCIM
Able to demonstrate an in-depth knowledge of potential security event sources and their interpretation and analysis in support of the incident detection and handling processes
Prior experience of working in an international environment comprising both military and civilian elements
Knowledge of NATO responsibilities and organizational structure