Employer Active
Expert on Enterprise Cybersecurity Incident Mgmt
EXPERIENCE AND EDUCATION:
Essential Qualifications/Experience:
Knowledge and multiyear experience in the organisation, management and support of international operations, activities, units and projects related to defence, security, electronics and communications
A degree from a university or establishment of similar standing
3+ years of experience in cybersecurity incident management, preferably in a large organization
Experience in:
Planning of multi-year programs related to cyber security incident management
Cyber incident management exercise planning processes and scenarios
Development of processes and cybersecurity incident response plans, preferably in a large organization
Provision of cybersecurity advice and guidance following incidents happening in and through cyberspace
Knowledge and experience coordinating with multiple stakeholders during the response activities to cybersecurity related incidents in large, geographically sparse organizations
An excellent knowledge and experience with cybersecurity incident response best practices
A good knowledge of the principles, policy and procedures governing cybersecurity, preferably in military and/or defence organizations
The ability to draft clear and concise reports, produce and maintain cybersecurity incident reports, security and risks logs and systems in support of cybersecurity incident response activities
Cyber security certifications such as CISM, CISSP or equivalent post-graduate degree in cybersecurity
Experience within NATO in leading cyber incident response activities
Knowledge of the NATO organization, its security policy and supporting directives
Coordinate and assess cybersecurity incident response activities and their effectiveness, in particular for incidents involving Enterprise systems
Perform and or supervise secretarial duties for cyber incident response related meetings
Coordinate and develop mitigation and remediation actions, in order to ensure a coherent response, Enterprise wide, to identified events and incidents
Develop, maintain and update an Enterprise-wide incident management framework to support the role of the CIO as Single Point of Authority for cybersecurity, in coordination with relevant NATO stakeholders, such as NCIA and CyOC
Liaise with the Cyberspace Operations Centre (CyOC) deployed elements for the coordination of Defensive Cyberspace activities
Liaise with the NCIA for monitoring and coordination of technical activities in relation to cybersecurity incidents
Liaise with the NATO Cyber Threat Assessment Branch for monitoring and assessment of cybersecurity threats
Recommend mitigation and contingency activities to address threats, vulnerabilities and related issues to NATO Enterprise networks
Provide cybersecurity advice and guidance and develop the yearly roadmap on cyber incident management
Full Time