Expert on Enterprise Cybersecurity Incident Mgmt

Expert on Enterprise Cybersecurity Incident Mgmt

• Working Location: Brussels, Belgium
  
• Security Clearance: NATO Secret
  
• Language: High proficiency level in English language
  

EXPERIENCE AND EDUCATION:

Essential Qualifications/Experience:

Knowledge and multiyear experience in the organisation, management and support of international operations, activities, units and projects related to defence, security, electronics and communications

A degree from a university or establishment of similar standing

3+ years of experience in cybersecurity incident management, preferably in a large organization

Experience in:

Planning of multi-year programs related to cyber security incident management

Cyber incident management exercise planning processes and scenarios

Development of processes and cybersecurity incident response plans, preferably in a large organization

Provision of cybersecurity advice and guidance following incidents happening in and through cyberspace

Knowledge and experience coordinating with multiple stakeholders during the response activities to cybersecurity related incidents in large, geographically sparse organizations

An excellent knowledge and experience with cybersecurity incident response best practices

A good knowledge of the principles, policy and procedures governing cybersecurity, preferably in military and/or defence organizations

The ability to draft clear and concise reports, produce and maintain cybersecurity incident reports, security and risks logs and systems in support of cybersecurity incident response activities

Cyber security certifications such as CISM, CISSP or equivalent post-graduate degree in cybersecurity

Experience within NATO in leading cyber incident response activities

Knowledge of the NATO organization, its security policy and supporting directives

Coordinate and assess cybersecurity incident response activities and their effectiveness, in particular for incidents involving Enterprise systems

Perform and or supervise secretarial duties for cyber incident response related meetings

Coordinate and develop mitigation and remediation actions, in order to ensure a coherent response, Enterprise wide, to identified events and incidents

Develop, maintain and update an Enterprise-wide incident management framework to support the role of the CIO as Single Point of Authority for cybersecurity, in coordination with relevant NATO stakeholders, such as NCIA and CyOC

Liaise with the Cyberspace Operations Centre (CyOC) deployed elements for the coordination of Defensive Cyberspace activities

Liaise with the NCIA for monitoring and coordination of technical activities in relation to cybersecurity incidents

Liaise with the NATO Cyber Threat Assessment Branch for monitoring and assessment of cybersecurity threats

Recommend mitigation and contingency activities to address threats, vulnerabilities and related issues to NATO Enterprise networks

Provide cybersecurity advice and guidance and develop the yearly roadmap on cyber incident management