C002137 Emerging Requirement 2022 Security Firewall Engineer (NS) - THU 14 Jul

Deadline Date: Thursday 14 July 2022

Requirement Title: Emerging Requirement 2022 Security Firewall Engineer

Location: Mons, Belgium

Full time on-site: Yes

NATO Grade: A/88

Total Scope of the request (hours): 696.66

Required Start Date: 8 Aug 2022

End Contract Date: 31 December 2022

Required Security Clearance: NATO SECRET

Special Terms and Conditions: There may be limited travel required, specifically to Brussels, Belgium and/or The Hague, Netherlands.

Duties and Role

Under the direction of Section Head, Gateway Security Services, the Secuirty Firewall Engineer will perform duties such as, but not limited to, the following:

• Support the Centralised SLA and project activities in all areas of network and security devices, such as
  • Central administration of Boundary Protection and Gateway services
  • System staging and configuration
  • Firewall policy development
• Management, maintenance and configuration of appliances and software applications for Gateway Security systems, including network security devices such as firewalls and data diodes to ensure continuing functionality and availability.
• Provide technical support in troubleshooting infrastructure and operational issues and collaborating with other teams for a successful resolution;
• Perform the analysis, design, implementation and maintenance of authorised changes, related to Gateway Security Systems and the integration/tailoring of vendor supplied components, following established procedures for quality, configuration control, testing, documentation and security;
• Collaborate with the Infrastructure Management and other Cyber Security teams
• Provide assistance to Incident Handlers to identify and remediate security incidents
• Review security documentation and provide technical advice, when requested
• Perform other duties as may be required.

Requirements

• The candidate must have a NATO SECRET security clearance

The required skillset for the contracted individual is extensive knowledge and experience (more than 5 years) in the following areas:

• Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
• Firewall installation and management of other vendors
• Other Boundaries Protections Devices such as mail gateways or data diodes
• Computer and Networks Security principles, procedures and technologies.
• Wide and local area networks and components (switches, routers)
• LAN/WAN networking including protocol network architecture, and the vulnerabilities of modern operating systems and applications
• Troubleshooting TCP/IP networks, Linux and/or Windows infrastructures to identify problems
• TCP/IP protocols and services
• UNIX and Microsoft Operating system
• Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams

In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:

• Deploying Palo Alto Network Threat Prevention on Enterprise level.
• Scripting (Python, Shell scripting, PowerShell).
• Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
• Previous work in an international environment comprising both military and civilian elements. Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC.