Engineer (Information Security/Assurance)

Engineer (Information Security/Assurance)

• Working Location: Naples, Italy
  
• Security Clearance: NATO Cosmic Top Secret
  
• Language: High proficiency level in English language
  

EXPERIENCE AND EDUCATION:

Essential Qualifications/Experience:

Minimum requirement of a Bachelors degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience

Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidates particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the post

In depth technical knowledge of Network, Servers and PC environments

Relevant experience and sound knowledge of Computer and Networks Security principles and procedures with good knowledge of TCP/IP network protocols and services

Strong experience of Unix/Linux and Microsoft Operating system administration

Proven capability of converting evolving operational requirements into Information Systems requirements

Proven experience in:

Providing advice and guidance on security strategies to manage identified risks

Providing advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines

Contributing to development of information security policy, standards and guidelines

Interpreting information assurance and security policies and applying these in order to manage risks

Maintaining secure configuration, applying and maintaining tools, techniques and processes to identify, track, log and maintain accurate, complete and current information

Courses:

0731 - Cyber Defence NATO COMPUSEC Level 1

0732 - Cyber Defence NATO COMPUSEC Level 2

0280 - Cyber Defence NATO CIS Security Officer (INFOSEC version 2.0)

Prior experience of working in an international environment comprising both military and civilian elements

Knowledge of NATO responsibilities and organization, including ACO and ACT

Knowledge of policy, procedures, and organisation of NATO CIS

Working knowledge of ITIL processes and procedures

Experience in working in a service desk environment

Courses:

CISSP

0730 - NATO Cyber Defence Advisor

Vulnerability Assessment Training

Provide technical expertise and support to the assigned AOR Cyber Defence working group

Provide Level 1 cyber security expertise and lifecycle support as required

Identifying system vulnerabilities and possible threats and applying the necessary safeguards (both technical and administrative) to minimize those vulnerabilities and defend against potential attacks

Developing and administering the site security program and the implementation and monitoring of NCI Agency Security policies and procedures

Provide engineering and implementation guidance as required

Investigate, define and resolve complex technical issues

Plan and execute Site Surveys within AOR

Provide, as requested, digital forensic support to security investigations in line with the assigned AOR SLA and as directed by NCSC

Developing, implementing and managing security awareness and training for site users

Providing advice and assistance to various personnel (technical and non-technical) in identifying security requirements for the different automated systems including security considerations in application development, implementation, operation and maintenance

Support assigned AOR accreditation requirements in direct coordination with the NCSC

Performing risk assessments and identifying potential security risks that may arise

Report security issues and concerns to management staff

Investigating security incidents and taking appropriate actions

Maintaining close liaison with NCI Agency SLs on all Cyber Security aspects

Evaluating and recommending security products and solutions

Perform the role of COMSEC Officer

Serve as the integration point of contact for implementation of cyber security new capability fielding initiatives

Provide engineering support and assistance for NCIRC-related activities and problems affecting change, operation and maintenance of NATO networks

Responsible for the crypto key-management within policy guidelines if required