Senior Security Engineer for NATO with secuirity clearance

DUTIES AND RESPONSIBILITIES

The successful candidate depending on the specific post (multiple positions envisioned) will be performing the following duties:

Provides professional contributions to assist in achieving and maintaining security accreditation for CMRE systems and applications data acquisition processing and storage and their interfacing with other CIS across the life cycle (development implementation operation enhancement withdrawal from service).

Within a project structure advises on cost-effective countermeasures to minimize the security risks anticipated during the development and operation phases of the CIS life cycle.

Within a framework of security accreditation implements and operates the prescribed security controls under the supervision of the CIS Provider and the under the control of Security Staff.

Documents the architecture configuration and security posture of CIS in use within CMRE to inform the risk management activities of the Security Organization.

Implements security best practices and security controls under the supervision of the CIS Provider

Plans implements and upgrades CIS

Analyses security breaches to determine their root cause

Contributes to define implement and maintain corporate security policies

Supervises and manages Technical Teams as required.

Undertakes security testing in accordance with an agreed Security Testing & Verification (ST&V) Plan.

Supports the CIS Provider in the formulation of Security Operating Procedures (SecOPs) for the CIS.

Contribute to the maintenance of configuration baselines through configuration management and change control.

Supports the CIS Provider in undertaking periodic vulnerability assessments under the control of Security staff and in accordance with the requirements of the Security Accreditation Authority.

Provides regular training and awareness to other project staff

Supports periodic security audits performed by Security Staff and the Security Accreditation Authority.

ESSENTIAL QUALIFICATIONS

Professional/Experience

Experience in the design or implementation of security controls within a formal security management framework (e.g. ISO 27000 NIST SP-800 series or other national equivalents);

Advanced knowledge of security systems including one or more of these domains: anti virus applications content filtering firewalls authentication systems vulnerability management solutions IDS/IPS DLP SIEM platforms;

Experience in supervision of technical teams or managing security projects;

Experience of preparing technical documentation and Standard Operating Procedures.

Education/Training

A minimum requirement of a Bachelors degree at a nationally recognised/certified university in a related discipline (Computer Engineering Computer Science) and 3 to 5 years post-related experience (junior/senior);

DESIRABLE QUALIFICATIONS

Experience with NATO or national Security Accreditation process;

Security management certifications (e.g. CISSP CRISC CISM or equivalent);

Technical certifications relevant to the post (e.g. GIAC CCNP-Security CompTIA Security or equivalent);

Advanced knowledge of web application security including OWASP Top 10 secure SDLC authentication/authorization mechanisms API security and web application security;

Experience implementing security controls in Databricks environments on Microsoft Azure including Unity Catalog workspace security cluster policies secret scopes network isolation (VNet injection private endpoints) and secure data access patterns;

Experience conducting web application penetration testing and security assessments;

Experience with container security and orchestration platforms

Experience with design implementation and management of networks based on Cisco technologies;

Experience with configuration and management of network monitoring and event

management systems (e.g. Splunk or Solarwinds);

Experience with security incident management;

Experience with NATO security policies;

Experience with security risk management.