SC2022-002063 Cyber Security Incident Investigator (NS) - TUE 30 Aug Relaunch
Mons, Wallonia, Belgium
Deadline Date: Tuesday 30 August 2022
Requirement: Cyber Security Incident Investigator
Location: Mons, BE
Full time on-site: Yes
NATO Grade: A4/123
Total Scope of the request (hours): 976
Required Start Date: 26 September 2022
End Contract Date: 31 December 2022
Required Security Clearance: NATO SECRET
Specific Working Conditions: Normal office environment, but in case of a major Cyber Security Incident, Vulnerability Management, Defensive Cyber Operations or any other significant adverse cyber event, the incumbent may be required to work extended hours and on shifts, including nights and weekends, to provide a 24/7 Cyber Security Incident Response.
Duties and Role:
Main responsibilities:
The incumbent's role and duties are as below:
- Lead NATO Enterprise-wide Cyber Security Incident Response on the coordination, procedural, technical, risk management and communications aspects.
- Lead NATO Enterprise-wide Vulnerability Management effort consisting of reviewing new vulnerabilities, identifying vulnerable assets, assessing the exploitability of the vulnerabilities on NATO environments, assessing the operational and business impact of a potential exploitation, identifying the mitigation options for these and tracking the remediation actions.
- Lead the execution of NATO Enterprise-wide Defence Cyber Operations in or through cyberspace to preserve friendly freedom of action.
- Transform cyber strategic objectives in execution plans, including the translation from strategic/operational objectives to technical execution. Lead, track, correct and report on the execution status.
- Lead and motivate a team composed of different profiles with diverse background in very tense and difficult situation to achieve the objectives.
- Create and maintain a network of cyber security personnel across and beyond the NATO Enterprise to facilitate communication and coordination of urgent actions when the need arises.
- Redact, review and prepare reports, recommendations and presentations to executive level staff, Security Authorities on Cyber Security Incident Response, Vulnerability Management and Defensive Cyber Operations, as well as any other topic related to Cyber Security.
- Deliver quality briefings, adapted to the audience (Technical experts, Military operational Personnel, C-level executives, media and industry) on Cyber Security Incident Response, Vulnerability Management and Defensive Cyber Operations, as well as any other topic related to Cyber Security.
- Performs other duties as may be required.
Requirements
Skill, Knowledge & Experience:
- The candidate must have a NATO SECRET security clearance
- A university degree at a nationally recognised/certified University in a technical subject with substantial Information Technology (IT) content and 8 years of specific experience. Exceptionally, the lack of a university degree may be compensated by the demonstration of a candidate's particular abilities or experience that is/are of interest to NCI Agency; that is, at least 15 years extensive and progressive expertise in the duties related to the function of the post.
Mandatory
- At least 8 years of demonstrable experience in handing complex Cyber Security Incidents, ideally in an international, governmental or military environment.
- Comprehensive understanding of the principles of Computer and Communication Security, networking, and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience
- Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management, technical and non-technical) At least 5 years demonstrable experience in leading teams to achieve success in adverse conditions.
- In-depth demonstrable knowledge in the management of Vulnerabilities and Cyber Security protective measures
- Hold a professional certification on Cyber Security Incident Handling
- Hold a professional certification on IT Service Management.
Desirable
- Hold a University degree in Cyber Security, IT Security-related discipline, Business or Risk Management.
- Experience in risk assessment and management
- Good understanding of the MITRE ATT&CK framework
Tags: C Clearance Incident response MITRE ATT&CK NATO Risk assessment Risk management Security Clearance Vulnerabilities Vulnerability management
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs