Location:
Mons, Belgium
Security Clearance:
NATO Secret
Reference No:
C001886 / Mons
Skills, knowledge, experience required:
- University degree in a technical subject with a focus on Information Technology (IT), obtained from a nationally recognized/certified institution in addition to a minimum of 1 year of experience in the field of cyber security analysis;
- The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis;
- Similarly, candidate’s lacking experience can compensate by demonstrating a high level of knowledge in the field of cyber security;
- Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission Control Protocol (TCP)/Internet Protocol (IP) networking, MS Windows and Linux operating systems;
- Broad understanding of common network security threats and mitigation techniques;
- Experience in the following:
- Security Information and Event Management products (SIEM) – e.g. ArcSight, Splunk;
- Analysis of Network Based Intrusion Detection Systems (NIDS) events– e.g. Sourcefire, Palo Alto Network Threat Prevention;
- Log analysis from a variety of sources (e.g. Firewalls, Proxies, Routers, Domain Name System (DNS) and other security appliances);
- Network traffic capture analysis using Wireshark;
- Logical approach to analysis and ability to perform structured security investigations using large, complex data sets;
- Good written and spoken communication skills;
- Ability to work independently and as part of a team.
- Industry leading certification in the area of cyber security, such as:
- GIAC Certified Intrusion Analyst (GCIA);
- GIAC Network Forensic Analyst (GNFA);
- GIAC Certified Incident Handler (GCIH);
- Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT);
- Proficiency in Intrusion/Incident Detection and Handling;
- Experience with:
- Full Packet Capture systems – e.g. NIKSUN, RSA/NetWitness;
- Host Based Intrusion Detection Systems (HIDS);
- Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc.);
- Computer forensics tools (stand alone, online and network);
- Military communication systems and networks.
- Performing initial analysis of logs and network traffic, determining alert severity and escalating when required;
- Collating information and presenting findings in a clear, structured format, providing remediation recommendations and first line response where applicable;
- Conducting research and assessments of security events within NATO Cyber Security
- Providing analysis of firewall, IDS, anti-virus and other network sensor produced events
- Appropriately leveraging the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) for enhancing investigations;
- Supporting the end-to-end Incident Handling process;
- Proposing optimizations and enhancements which help to both maintain and improve
VECTOR SYNERGY sp. z o.o., ul. Marcelińska 90, 60-324 Poznań, NIP PL7811857270, REGON 301575740, KRS: 0000369575
Rejestr Przedsiębiorców KRS prowadzony przez Sąd Rejonowy Poznań – Nowe Miasto i Wilda w Poznaniu, VIII Wydział Gospodarczy KRS,
kapitał zakładowy wynosi: 73 500,00 złotych wpłacony w całości, TEL +48 616684500, FAX +48 616684501, www.vectorsynergy.com, info@vectorsynergy.com.