SC2022-002363 Web Vulnerabilities Assessment Professional (NS) - FRI 2 Sep
Mons, Wallonia, Belgium
Deadline Date: Friday 2 September 2022
Requirement: Web Vulnerabilities Assessment Professional
Location: Mons, BE
Full time on-site: Yes
NATO Grade: A/132
Total Scope of the request (hours): 418
Required Start Date: 3 October 2022
End Contract Date: 31 December 2022
Required Security Clearance: NATO SECRET
Specific Working Conditions: The work will be executed on-site. Payment of work will take place monthly on a pro-rata basis following confirmation of expended level of effort. This is a level of effort contract with a scope of 60 working days, where deliverables and acceptance criteria will be identified during a kick off meeting with NCIA and OCIO staff. A biweekly meeting will take place to track progresses.
Duties & Role:
Under the direction of the NCSC Security Compliance and Mitigation section Head, the incumbent will execute following tasks:
- Organize, manage and coordinate website vulnerability assessments
- Collect and consolidate the vulnerabilities discovered during the assessment campaigns;
- Execute Vulnerability Management duties, based on the Security findings reported from the assessment campaigns. This includes:
- Validating the severity of discovered vulnerabilities,
- Contextualising the vulnerabilities in the light of NATO policies and best practices,
- Determining possible remediation and mitigation measures,
- Assigning priorities,
- Contacting and liaising with relevant system owners and proposing a remediation plan,
- Track and trace all remediation actions, and report progress to OCIO.
- After each campaign, deliver a comprehensive vulnerability report, taking into account all identified security shortfalls, and the associated action plans
Requirements
Skill, Knowledge & Experience:
- The candidate must have a currently active NATO SECRET security clearance.
General experience requirements:
- Experience in Cyber Security, ideally having a former or current background as a Web pentester or, at least, demonstrating being able to understand and interpret the technical details of a web pentest report.
- Experience in the Vulnerability Assessment and / or Management area, particularly in the interpretation of the results of CIS Technical Security Vulnerability Assessments.
- Experience in the implementation and integration of CIS Security protective measures, or practical hands-on experience in system and network administration.
- Excellent communication skills with respect to briefing/presenting, report writing & mediation and relevant experience.
- Comprehensive understanding of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience
Tags: Clearance Compliance NATO Security Clearance Vulnerabilities Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs