C003556 Level 3 Firewall Engineer (CTS) - MON 20 May

Deadline Date: Monday 20 May 2024

Requirement: Level 3 Firewall Engineer

Location: Mons, BE

Full Time On-Site: Yes

Time On-Site: 100%

Total Scope of the request (hours): 836

Required Start Date: 1 July 2024

End Contract Date: 31 December 2024

Required Security Clearance: NATO COSMIC TOP SECRET

Duties and Role:

Under the direction of Section Head, Gateway Security Services, the 'Level 3 Firewall Engineer' will have the following role:

• Build, implement, maintain, and support firewalls and other network security devices.

Essential functions include, but are not limited to:

• Central administration and configuration of Firewalls to ensure continuing functionality and availability.
• Firewall policy/ruleset implementation and verification
• Initial setup, configuration of new firewalls and integration into the central management tools
• Provide technical support in troubleshooting infrastructure and operational issues and collaborating with other teams for a successful resolution;
• Collaborate with the Infrastructure Management and other Cyber Security teams
• Provide assistance to Incident Handlers to identify and remediate security incidents
• Review security documentation and provide technical advice, when requested
• Perform other duties as may be required.

Specific Working Conditions: The work will be principally executed on site at the NCI Agency offices in Mons, Belgium, with the possibility to work remotely at times.

The work location is a normal office environment with standard working hours.

However, there will be requirements to perform out-of-hours work to support planned maintenance activities or delivery of critical services as well as to provide on-call support outside regular business hours.

Requirements

Skill, Knowledge & Experience:

• The candidate must have a currently active NATO COSMIC TOP SECRET security clearance
• Extensive knowledge and experience (more than 5 years) in Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
• Extensive knowledge and experience (more than 5 years) in firewall installation and management of other vendors
• Extensive knowledge and experience (more than 5 years) in scripting (Bash, Python, Ansible)
• Extensive knowledge and experience (more than 5 years) in network protocols and traffic analysis
• Ability to troubleshoot complex network security issues
• Extensive knowledge and experience (more than 5 years) in LAN/WAN networking including protocol network architecture, and the vulnerabilities of modern operating systems and applications
• Extensive knowledge and experience (more than 5 years) in TCP/IP protocols and services
• Knowledge of *nix-based Operating Systems
• Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams

In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:

• Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
• Previous work in an international environment comprising both military and civilian elements.
• Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC