12

Web Vulnerabilities Assessment Professional (NATO-NCIA)

Mons, Belgium, Sapienza Consulting [SC2022-002363]

Field(s) of expertise
Information Technology
Job type
Contract
Education
Vocational
Deadline
Closed

About this job

Sapienza Consulting is recruiting a Web Vulnerabilities Assessment Professional to join NATO – NCIA in Mons, Wallonia, Belgium.

Responsibilities

Under the direction of the NCSC Security Compliance and Mitigation section Head, the incumbent will execute following tasks:

  • Organize, manage and coordinate website vulnerability assessments
  • Collect and consolidate the vulnerabilities discovered during the assessment campaigns
  • Execute Vulnerability Management duties, based on the Security findings reported from the assessment campaigns. This includes:
    • Validating the severity of discovered vulnerabilities
    • Contextualising the vulnerabilities in the light of NATO policies and best practices
    • Determining possible remediation and mitigation measures
    • Assigning priorities
    • Contacting and liaising with relevant system owners and proposing a remediation plan
    • Track and trace all remediation actions, and report progress to OCIO
  • After each campaign, deliver a comprehensive vulnerability report, taking into account all identified security shortfalls, and the associated action plans

Profile

  • The candidate must have a currently active NATO SECRET security clearance.

General experience requirements:

  • Experience in Cyber Security, ideally having a former or current background as a Web pentester or, at least, demonstrating being able to understand and interpret the technical details of a web pentest report
  • Experience in the Vulnerability Assessment and / or Management area, particularly in the interpretation of the results of CIS Technical Security Vulnerability Assessments
  • Experience in the implementation and integration of CIS Security protective measures, or practical hands-on experience in system and network administration
  • Excellent communication skills with respect to briefing/presenting, report writing & mediation and relevant experience.
  • Comprehensive understanding of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience

 

For information on how the personal data in your application is processed, please see the Sapienza Consulting Privacy Policy.