NISP Linux Consultancy Services
Employer Active
Job Alert
You will be updated with latest job alerts via email
Job Alert
You will be updated with latest job alerts via emailJobs by Experience
5years
Monthly Salary
Not Disclosed
Salary Not Disclosed
Vacancy
1 Vacancy
Job Description
NISP Linux Consultancy Services
- Working Location: The Hague Netherlands
- Security Clearance: NATO Secret
- Language: High proficiency level in English language
EXPERIENCE AND EDUCATION:
Essential Qualifications/Experience:
Experience with distributed revision control tools
Desirable Qualifications/Experience:
Prior experience of working in an international environment comprising both military and civilian elements
Experience with git and GitLab
DUTIES/ROLE:
WP ID
Work Package Title
WP 1
Port latest released NISP (Oracle Linux) to latest released Oracle Linux 9
NISPOL is comprised of software and documentation which allow the end user to install a secured Oracle Linux 8 onto bare metal or update an existing installation. Several machine profiles are supported such as AD member server standalone server full server with clients.
ID
Deliverable(s) Description
D1
Bootable ISO image (compatible with boot from USB keys and BluRay) which allows to install NISPOL with Oracle Linux 9 following the same or very similar procedures as NISPOL with Oracle Linux 8.
D2
Automatic build procedure to build the bootable ISO image from D1.
D3
Full server fresh installation and client kickstart over network from full server installed from the bootable ISO image of D1.
D4
Standalone server fresh installation and configuration as Active Directory Member Server.
D5
Secured FreeIPA configuration as domain controller on full server.
D6
Updated documentation and procedures for NISPOL with Oracle Linux 9 in the following documentation: Software Installation Plan System Administration Manual
D7
Updated information on supported hardware and virtualization environments in the Hardware Guide
ID
Constraint(s) Description
C1
Secure Boot shall be supported for installation from media and network
C2
Provided procedures must work in an offline environment (no Internet connectivity).
C3
Documentation source is in DocBook however oXygen is available for near WYSIWYG editing.
C4
Revision control used in NISP project is git with gitlab
ID
Acceptance Criteria
A1
Deliverables shall pass the full NISP Regression Test Suite any test case redlines must be approved by test director and leading engineer
A2
Any provided code or code changes must pass SonarQube quality evaluation (same settings as rest of NISP project).
Additional Notes
Note 1: The automatic build of the NISPOL installation ISO and all associated procedures are available and tested for Oracle Linux 8. The contractors may build upon those procedures and code.
Note 2: We expect familiarity with revision control in general and git in particular.
Note 3: We expect the contractors to be specialists with indepth expertise in the area related to this workpackage; we further expect the contractors to be able to work unsupervised.
Note 4: NISP Team will provide support and information related to local specificities such as the NISP build environment access to required files and folders access to test machines access to offices and workenvironment; NISP Team can further provide details on what to implement related to this work package; however NISP Team cannot provide technical expertise related to the how of implementing this work package.
Note 5: Deliverables can be grouped and each group accepted separately as follows D1 D2
D3
D4
D5
D6
D7
WP ID
Work Package Title
WP 2
Stepbystep procedure to update a NISP Oracle Linux 8 to Oracle Linux 9
NISPOL is comprised of software and documentation which allow the end user to install a secured Oracle Linux 8 onto bare metal or update an existing installation. Several machine profiles are supported such as AD member server standalone server or full server with clients.
ID
Deliverable(s) Description
D1
Stepbystep procedures to update a NISP based on Oracle Linux 8 to a NISP based on Oracle Linux 9 taking into account:
1. Different server profiles (standalone AD member server full server)
2. Machines with disk encryption
3. Keeping users groups clientmachines network configuration service configuration file share configuration machine profile configuration security settings
4. Keeping Functional Application Software (FAS) working (databases Application servers)
ID
Constraint(s) Description
C1
N/A
ID
Acceptance Criteria
A1
Following the provided update procedures results in a working machine or system.
A2
Any provided code or code changes must pass SonarQube quality evaluation (same settings as rest of NISP project).
Additional Notes
Note 1: The automatic build of the NISPOL installation ISO and all associated procedures are available and tested for Oracle Linux 8. The contractors may build upon those procedures and code.
Note 2: We expect familiarity with revision control in general and git in particular.
Note 3: We expect the contractors to be specialists with indepth expertise in the area related to this workpackage; we further expect the contractors to be able to work unsupervised.
Note 4: NISP Team will provide support and information related to local specificities such as the NISP build environment access to required files and folders access to test machines access to offices and workenvironment; NISP Team can further provide details on what to implement related to this work package; however NISP Team cannot provide technical expertise related to the how of implementing this work package.
WP ID
Work Package Title
WP 3
Application of Security Rules on NISP Oracle Linux 8
NISPOL is comprised of software and documentation which allow the end user to install a secured Oracle Linux 8 onto bare metal or update an existing installation. Several machine profiles are supported such as AD member server standalone server or full server with clients
ID
Deliverable(s) Description
D1
Successful application (remediation) of selected security rules from D1 to NISP Oracle Linux 8 without impeding functionality of NISP Oracle Linux 8.
D2
Successful auditing of selected of security rules to NISP Oracle Linux 8 without impeding functionality of NISP Oracle Linux 8.
D3
Documentation of changes to security rules required for successful remediation and rationale for change.
D4
Documentation of changes to security rules required for successful auditing and rationale for change.
D5
Adaptation of security rules to different machine profiles (standalone server member server full server or client).
ID
Constraint(s) Description
C1
Security Rules from Oracle Linux 8 DISA STIG or Oracle Linux 8 SCAP Security Guide.
C2
Provided procedures must work in an offline environment (no Internet connectivity).
C3
Application and auditing of security rules using oscap commands
C4
Revision control used in NISP project is git with gitlab.
C5
Changes to security rules shall be traced in revision control tool.
ID
Acceptance Criteria
A1
Machine shall pass the full NISP Regression Test Suite after application of security settings any test case redlines must be approved by test director and leading engineer.
A2
Security settings shall be applied successfully according to documented procedure
A3
Any provided code or code changes must pass SonarQube quality evaluation (same settings as rest of NISP project).
Additional Notes
Note 1: The automatic build of the NISPOL installation ISO and all associated procedures are available and tested for Oracle Linux 8. The contractors may build upon those procedures and code.
Note 2: We expect familiarity with revision control in general and git in particular.
Note 3: We expect the contractors to be specialists with indepth expertise in the area related to this workpackage; we further expect the contractors to be able to work unsupervised.
Note 4: NISP Team will provide support and information related to local specificities such as the NISP build environment access to required files and folders access to test machines access to offices and workenvironment; NISP Team can further provide details on what to implement related to this work package; however NISP Team cannot provide technical expertise related to the how of implementing this work package.
Note 5: Deliverables can be grouped and each group accepted separately as follows
D1 D3
D2 D4
D5
Employment Type
Full Time
