C002299 Engineer (Information Security/Assurance) (CTS) - THU 18 Aug Relaunch

Deadline Date: Thursday 18 August 2022

Requirement: Engineer (Information Security/Assurance)

Location: Naples, IT

Full time on-site: Yes

NATO Grade: G15/53

Total Scope of the request (hours): 760

Required Start Date: 19 September 2022

End Contract Date: 31 December 2022

Required Security Clearance: NATO COSMIC TOP SECRET

Duties and Role:

• Provide technical expertise and support to the assigned AOR Cyber Defence working group;
• Provide Level 1 cyber security expertise and lifecycle support as required;
• Identifying system vulnerabilities and possible threats and applying the necessary safeguards (both technical and administrative) to minimize those vulnerabilities and defend against potential attacks;
• Developing and administering the site security program and the implementation and monitoring of NCI Agency Security policies and procedures;
• Provide engineering and implementation guidance as required;
• Investigate, define and resolve complex technical issues;
• Plan and execute Site Surveys within AOR;
• Provide, as requested, digital forensic support to security investigations in line with the assigned AOR SLA and as directed by NCSC;
• Developing, implementing and managing security awareness and training for site users;
• Providing advice and assistance to various personnel (technical and non-technical) in identifying security requirements for the different automated systems including security considerations in application development, implementation, operation and maintenance;
• Support assigned AOR accreditation requirements in direct coordination with the NCSC;
• Performing risk assessments and identifying potential security risks that may arise;
• Report security issues and concerns to management staff;
• Investigating security incidents and taking appropriate actions;
• Maintaining close liaison with NCI Agency SLs on all Cyber Security aspects;
• Evaluating and recommending security products and solutions;
• Perform the role of COMSEC Officer;
• Serve as the integration point of contact for implementation of cyber security new capability fielding initiatives;
• Provide engineering support and assistance for NCIRC-related activities and problems affecting change, operation and maintenance of NATO networks.
• Responsible for the crypto key-management within policy guidelines if required;
• Deputize for higher grade staff;
• Performs other duties as may be required.

Requirements

Skill, Knowledge & Experience:

• The candidate must have a NATO COSMIC TOP SECRET security clearance
• A minimum requirement of a Bachelor's degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience;
• Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidate's particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the post;
• In depth technical knowledge of Network, Servers and PC environments;
• Relevant experience and sound knowledge of Computer and Networks Security principles and procedures with good knowledge of TCP/IP network protocols and services;
• Strong experience of Unix/Linux and Microsoft Operating system administration;
• Proven capability of converting evolving operational requirements into Information Systems requirements;
• Proven experience in providing advice and guidance on security strategies to manage identified risks;
• Proven experience in providing advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines;
• Proven experience in contributing to development of information security policy, standards and guidelines;
• Proven experience in interpreting information assurance and security policies and applying these in order to manage risks;
• Proven experience in maintaining secure configuration, applying and maintaining tools, techniques and processes to identify, track, log and maintain accurate, complete and current information;
• Course 0731 - Cyber Defence NATO COMPUSEC Level 1;
• Course 0732 - Cyber Defence NATO COMPUSEC Level 2;
• Course 0280 - Cyber Defence NATO CIS Security Officer (INFOSEC version 2.0).

Desirable Experience and Education:

• Prior experience of working in an international environment comprising both military and civilian elements;
• Knowledge of NATO responsibilities and organization, including ACO and ACT;
• Knowledge of policy, procedures, and organisation of NATO CIS;
• Working knowledge of ITIL processes and procedures;
• Experience in working in a service desk environment;
• CISSP;
• Course 0730 - NATO Cyber Defence Advisor;
• Vulnerability Assessment Training.