Employer Active
Engineer (Information Security/Assurance)
EXPERIENCE AND EDUCATION:
Essential Qualifications/Experience:
Minimum requirement of a Bachelors degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience
Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidates particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the post
In depth technical knowledge of Network, Servers and PC environments
Relevant experience and sound knowledge of Computer and Networks Security principles and procedures with good knowledge of TCP/IP network protocols and services
Strong experience of Unix/Linux and Microsoft Operating system administration
Proven capability of converting evolving operational requirements into Information Systems requirements
Proven experience in:
Providing advice and guidance on security strategies to manage identified risks
Providing advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines
Contributing to development of information security policy, standards and guidelines
Interpreting information assurance and security policies and applying these in order to manage risks
Maintaining secure configuration, applying and maintaining tools, techniques and processes to identify, track, log and maintain accurate, complete and current information
Courses:
0731 - Cyber Defence NATO COMPUSEC Level 1
0732 - Cyber Defence NATO COMPUSEC Level 2
0280 - Cyber Defence NATO CIS Security Officer (INFOSEC version 2.0)
Prior experience of working in an international environment comprising both military and civilian elements
Knowledge of NATO responsibilities and organization, including ACO and ACT
Knowledge of policy, procedures, and organisation of NATO CIS
Working knowledge of ITIL processes and procedures
Experience in working in a service desk environment
Courses:
CISSP
0730 - NATO Cyber Defence Advisor
Vulnerability Assessment Training
Provide technical expertise and support to the assigned AOR Cyber Defence working group
Provide Level 1 cyber security expertise and lifecycle support as required
Identifying system vulnerabilities and possible threats and applying the necessary safeguards (both technical and administrative) to minimize those vulnerabilities and defend against potential attacks
Developing and administering the site security program and the implementation and monitoring of NCI Agency Security policies and procedures
Provide engineering and implementation guidance as required
Investigate, define and resolve complex technical issues
Plan and execute Site Surveys within AOR
Provide, as requested, digital forensic support to security investigations in line with the assigned AOR SLA and as directed by NCSC
Developing, implementing and managing security awareness and training for site users
Providing advice and assistance to various personnel (technical and non-technical) in identifying security requirements for the different automated systems including security considerations in application development, implementation, operation and maintenance
Support assigned AOR accreditation requirements in direct coordination with the NCSC
Performing risk assessments and identifying potential security risks that may arise
Report security issues and concerns to management staff
Investigating security incidents and taking appropriate actions
Maintaining close liaison with NCI Agency SLs on all Cyber Security aspects
Evaluating and recommending security products and solutions
Perform the role of COMSEC Officer
Serve as the integration point of contact for implementation of cyber security new capability fielding initiatives
Provide engineering support and assistance for NCIRC-related activities and problems affecting change, operation and maintenance of NATO networks
Responsible for the crypto key-management within policy guidelines if required
Full Time