The page you are looking for could not be found.

AAS2149-1 - Cyber Security Event Analyst, Mons, Fri 7th June (reissue) - EMW, Inc. - Bergen

EMW, Inc. | Posted 29-05-2019

Bergen (La cyber-sécurité)

Job expired
Bergen

DEADLINE: Friday 7th June 2019

Required Security Clearance: NATO Cosmic Top Secret

Total Scope of the request: 1300 hours

Full time onsite in MONS

Start: ASAP

End: December 2019

Equivalent NATO Grade: A3


  • Manages, coordinates and leads the On-Line Vulnerability Assessment Cell;
  • Provides general technical direction on COMPUSEC On-Line Vulnerability Assessment services and OnLine programmes;
  • Perform centralised OnLine COMPUSEC Vulnerability Assessments of remote networks and interfaces on classified and unclassified networks, systems and websites;
  • Perform functions to ensure Cyber Security Hygiene Indicators (CSHI) programme is implemented effectively and efficiently;
  • Perform COMPUSEC Penetration Testing (Type 4 Security Audits) on classified and unclassified networks, systems and websites;
  • Support NCI Agency CIS Support Units and other NATO Command Structure entities and customers in the process of vulnerability remediation;
  • Maintain awareness of new technologies and developments, industry standards and Best Practices and Threat Intelligence within the wider IA community;
  • Monitor developments in area of expertise with a view to optimising OVA practice to meet current best practice;
  • Liaise with CS SL FOC Service Manager and CS SL FOC O&M contractor to ensure that the CS SL FOC On-Line Vulnerability Assessment Capability (OVAC) is operational;
  • Develop wide ranging Security Audit, Compliance Check & Penetration Testing documentation, which will include:
  • OnLine Security Audit, Compliance Check & Penetration Testing reports;
  • Security Audit, Compliance Check & Penetration Testing trend analysis reports;
  • Security Audit, Compliance Check & Penetration Testing tool operating/configuration instructions;
  • General Security Audit, Compliance Check & Penetration Testing procedure documentation;
  • Provide technical assistance as required to System Accreditation Authorities (SAA);
  • Provide required support for selection of security tools;
  • Provide training and advice to NATO wide COMPUSEC/CIS Security staff in the areas of Security Audit, Compliance Check & Penetration Testing Training;
  • Provide cyber defence support to NATO Exercises, which include:
  • Pre-deployment configuration check;
  • Exercise planning and direction;
  • Deployed system security audits and compliance checks;
  • Support to the remediation activities;
  • Provide COMPUSEC-related input to NATO Policy and Agency Directives in Cyber Security area;
  • Support production of Standard Operating Procedures covering all aspects of vulnerability data collection, vulnerability data analysis and reporting processes to ensure consistency with NATO Policy and Agency Directives;
  • Participate in NCI Agency and NATO Project Working Groups (WGs) as Subject Matter Expert (SME) in Vulnerability Assessment procedures, Website Security and Cyber Security Hygiene and supporting NCI Agency Cyber Security initiatives in these domains;
  • Provide analysis and interpretation of vulnerability assessment results and recommendation of mitigation strategies;
  • Produce technical and executive level reports;
  • Review security documentation and provide advice;

Requirements

  • Required Security Clearance: NATO Cosmic Top Secret
  • Manages, coordinates and leads the On-Line Vulnerability Assessment Cell;
  • Provides general technical direction on COMPUSEC On-Line Vulnerability Assessment services and OnLine programmes;
  • Perform centralised OnLine COMPUSEC Vulnerability Assessments of remote networks and interfaces on classified and unclassified networks, systems and websites;
  • Perform functions to ensure Cyber Security Hygiene Indicators (CSHI) programme is implemented effectively and efficiently;
  • Perform COMPUSEC Penetration Testing (Type 4 Security Audits) on classified and unclassified networks, systems and websites;
  • Support NCI Agency CIS Support Units and other NATO Command Structure entities and customers in the process of vulnerability remediation;
  • Maintain awareness of new technologies and developments, industry standards and Best Practices and Threat Intelligence within the wider IA community;
  • Monitor developments in area of expertise with a view to optimising OVA practice to meet current best practice;
  • Liaise with CS SL FOC Service Manager and CS SL FOC O&M contractor to ensure that the CS SL FOC On-Line Vulnerability Assessment Capability (OVAC) is operational;
  • Develop wide ranging Security Audit, Compliance Check & Penetration Testing documentation
  • Provide cyber defence support to NATO Exercises,

Benefits

Both EMW & NATO are Equal Opportunity Employers

Required Security Clearance: NATO Cosmic Top Secret

Equivalent NATO Grade: A3