SC2024-003492 Level 3 Firewall and Guard Engineer (CTS) - WED 24 Apr

Deadline Date: Wednesday 24 April 2024

Requirement: Level 3 Firewall and Guard Engineer

Location: Mons, BE

Full Time On-Site: Yes

Time On-Site: 100%

Total Scope of the request (hours): 1000

Required Start Date: 3 June 2024

End Contract Date: 31 December 2024

Required Security Clearance: NATO COSMIC TOP SECRET

Duties and Role:

Under the direction of Section Head, Gateway Security Services, the 'Level 3 Firewall and Guard Engineer' will have two primary roles:

• Build, implement, maintain, and support firewalls and other network security devices.
• Configuring, maintaining and supporting Mailguards and Data Diodes

Essential functions include, but are not limited to:

• Central administration and configuration of Firewalls, Guards and Data Diodes to ensure continuing functionality and availability.
• Firewall policy/ruleset implementation and verification
• Updating and implementation of guard and diode configuration
• Provide technical support in troubleshooting infrastructure and operational issues and collaborating with other teams for a successful resolution;
• Collaborate with the Infrastructure Management and other Cyber Security teams
• Provide assistance to Incident Handlers to identify and remediate security incidents
• Review security documentation and provide technical advice, when requested
• Perform other duties as may be required

The work will be principally executed on site at the NCI Agency offices in Mons, Belgium, with the possibility to work remotely at times (at home within duty country).

The work location is a normal office environment with standard working hours.

However, there will be requirements to perform out-of-hours work to support planned maintenance activities or delivery of critical services as well as to provide on-call support outside regular business hours.

There may be limited travel required, specifically to Brussels, Belgium, The Hague, Netherlands or Brunssum. Netherlands

Requirements

Skill, Knowledge & Experience:

• The candidate must have a currently active NATO COSMIC TOP SECRET security clearance

The required skillset for the contracted individual is extensive knowledge and experience (more than 5 years) in the following areas:

• Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
• Firewall installation and management of other vendors
• System Administration of *nix-based Operating Systems
• Scripting (Bash, Python, Ansible)
• Other Boundaries Protections Devices such as mail gateways or data diodes
• Experience with network protocols and traffic analysis
• Ability to troubleshoot complex network security issues
• LAN/WAN networking including protocol network architecture, and the vulnerabilities of modern operating systems and applications
• TCP/IP protocols and services
• Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams

In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:

• Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
• Previous work in an international environment comprising both military and civilian elements.
• Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC