First Line Security Event Analyst (FLSEA) 3 [Belgium]


 

Location:
Mons, Belgium

Security Clearance:
NATO Secret

Reference No:
C001886 / Mons

Skills, knowledge, experience required:
  • University degree in a technical subject with a focus on Information Technology (IT), obtained from a nationally recognized/certified institution in addition to a minimum of 1 year of experience in the field of cyber security analysis;
  • The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis;
  • Similarly, candidate’s lacking experience can compensate by demonstrating a high level of knowledge in the field of cyber security;
  • Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission Control Protocol (TCP)/Internet Protocol (IP) networking, MS Windows and Linux operating systems;
  • Broad understanding of common network security threats and mitigation techniques;
  • Experience in the following:
  • Security Information and Event Management products (SIEM) – e.g. ArcSight, Splunk;
  • Analysis of Network Based Intrusion Detection Systems (NIDS) events– e.g. Sourcefire, Palo Alto Network Threat Prevention;
  • Log analysis from a variety of sources (e.g. Firewalls, Proxies, Routers, Domain Name System (DNS) and other security appliances);
  • Network traffic capture analysis using Wireshark;
  • Logical approach to analysis and ability to perform structured security investigations using large, complex data sets;
  • Good written and spoken communication skills;
  • Ability to work independently and as part of a team.
Desirable:
  • Industry leading certification in the area of cyber security, such as:
  • GIAC Certified Intrusion Analyst (GCIA);
  • GIAC Network Forensic Analyst (GNFA);
  • GIAC Certified Incident Handler (GCIH);
  • Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT);
  • Proficiency in Intrusion/Incident Detection and Handling;
  • Experience with:
  • Full Packet Capture systems – e.g. NIKSUN, RSA/NetWitness;
  • Host Based Intrusion Detection Systems (HIDS);
  • Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc.);
  • Computer forensics tools (stand alone, online and network);
  • Military communication systems and networks.
Duties/role:
  • Performing initial analysis of logs and network traffic, determining alert severity and escalating when required;
  • Collating information and presenting findings in a clear, structured format, providing remediation recommendations and first line response where applicable;
  • Conducting research and assessments of security events within NATO Cyber Security
Centre (NCSC) team;

  • Providing analysis of firewall, IDS, anti-virus and other network sensor produced events
and presenting findings;

  • Appropriately leveraging the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) for enhancing investigations;
  • Supporting the end-to-end Incident Handling process;
  • Proposing optimizations and enhancements which help to both maintain and improve
NATO’s Cyber Security posture.

VECTOR SYNERGY sp. z o.o., ul. Marcelińska 90, 60-324 Poznań, NIP PL7811857270, REGON 301575740, KRS: 0000369575

Rejestr Przedsiębiorców KRS prowadzony przez Sąd Rejonowy Poznań – Nowe Miasto i Wilda w Poznaniu, VIII Wydział Gospodarczy KRS,

kapitał zakładowy wynosi: 73 500,00 złotych wpłacony w całości, TEL +48 616684500, FAX +48 616684501, www.vectorsynergy.com, info@vectorsynergy.com


 

.

Post a Comment

Previous Post Next Post

Sponsored Ads

نموذج الاتصال