About this job

Sapienza Consulting is recruiting an Engineer (Information Security/Assurance) to join NATO – NCIA in Naples, Metropolitan City of Naples, Italy.

Responsibilities

• Provide technical expertise and support to the assigned AOR Cyber Defence working group
• Provide Level 1 cyber security expertise and lifecycle support as required
• Identifying system vulnerabilities and possible threats and applying the necessary safeguards (both technical and administrative) to minimize those vulnerabilities and defend against potential attacks
• Developing and administering the site security program and the implementation and monitoring of NCI Agency Security policies and procedures
• Provide engineering and implementation guidance as required
• Investigate, define and resolve complex technical issues
• Plan and execute Site Surveys within AOR
• Provide, as requested, digital forensic support to security investigations in line with the assigned AOR SLA and as directed by NCSC
• Developing, implementing and managing security awareness and training for site users
• Providing advice and assistance to various personnel (technical and non-technical) in identifying security requirements for the different automated systems including security considerations in application development, implementation, operation and maintenance
• Support assigned AOR accreditation requirements in direct coordination with the NCSC
• Performing risk assessments and identifying potential security risks that may arise
• Report security issues and concerns to management staff
• Investigating security incidents and taking appropriate actions
• Maintaining close liaison with NCI Agency SLs on all Cyber Security aspects
• Evaluating and recommending security products and solutions
• Perform the role of COMSEC Officer
• Serve as the integration point of contact for implementation of cyber security new capability fielding initiatives
• Provide engineering support and assistance for NCIRC-related activities and problems affecting change, operation and maintenance of NATO networks
• Responsible for the crypto key-management within policy guidelines if required
• Deputize for higher grade staff
• Performs other duties as may be required

Profile

• The candidate must have a NATO COSMIC TOP SECRET security clearance
• A minimum requirement of a Bachelor’s degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience
• Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidate’s particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the post
• In depth technical knowledge of Network, Servers and PC environments
• Relevant experience and sound knowledge of Computer and Networks Security principles and procedures with good knowledge of TCP/IP network protocols and services
• Strong experience of Unix/Linux and Microsoft Operating system administration
• Proven capability of converting evolving operational requirementsinto Information Systems requirements
• Proven experience in providing advice and guidance on security strategies to manage
• identified risks
• Proven experience in providing advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines
• Proven experience in contributing to development of information security policy, standards and guidelines
• Proven experience in interpreting information assurance and security policies and applying these in order to manage risks
• Proven experience in maintaining secure configuration, applying and maintaining tools, techniques and processes to identify, track, log and maintain accurate, complete and current information
• Course 0731 – Cyber Defence NATO COMPUSEC Level 1
• Course 0732 – Cyber Defence NATO COMPUSEC Level 2
• Course 0280 – Cyber Defence NATO CIS Security Officer (INFOSEC version 2.0)

Desirable Experience and Education:

• Prior experience of working in an international environment comprising both military and civilian elements
• Knowledge of NATO responsibilities and organization, including ACO and ACT
• Knowledge of policy, procedures, and organisation of NATO CIS
• Working knowledge of ITIL processes and procedures
• Experience in working in a service desk environment
• CISSP
• Course 0730 – NATO Cyber Defence Advisor
• Vulnerability Assessment Training