About this job

Sapienza Consulting is recruiting a Cyber Defence Situational Awareness Tool Manager to work at NCIA in Mons.

Responsibilities

As Cyber Defence Situational Awareness (CDSA) Tool Manager, the incumbent will be responsible for contributing to the development of the CDSA service carrying out proactive and preventative maintenance tasks as well as 1st and 2nd Line rectification, reporting to the Head, Security Tools Management Section and collaborating with the engineers within the Incident Analysis and Response Section and the Platform and Instructure Management Section Staff inside NCSC for the underlying platforms support.Main responsibilities:

• Provide CDSA subject matter expertise to NCIRC Operations and Service Delivery management covering all stages of the CDSA Service Lifecycle (e.g. Service Design, Transition, Operations, Change Management and Continual Service Improvement)
• Develop and validate Level 1 and Level 2 Support & Maintenance Procedures
• Carry out Routine Health monitoring and preventative maintenance tasks for CDSA
• Provide CDSA Early Life Support (ELS) to all CDSA stakeholders including:- Management & resolution of all Level 1 & Level 2 issues working in conjunction with the existing IT Service Management framework and personnel
• On-site CDSA expertise coordinating with existing NCIRC Support Team and Operations Management
• Acting as on-site point of contact for support engagements, including handover of Level 3 & 4 support issues, to contracted deep level vendor support teams
• Work out implementation plans for new capabilities and take ownership to ensure rapid implementation of those new tools and optimizations
• Initiate, prepare, follow and defend the specialist applications upgrades in front of Change Management Board
• Implement approved changes.Develop scripts and code to facilitate the integration of the different tools.

Profile

• Essential to have Bachelor’s Degree in Computer Science combined with minimum of 2 years’ experience in as Security Tool Analyst (STA), Security Tool Manager or similar position involving technical ICT engineering knowledge, or Secondary education and completed advanced vocational education (leading to professional qualification or professional accreditation) with 5 years post related experience.
• Demonstrable hands-on experience and a high level of technical knowledge covering:
• Data fusion platforms and data source integration via APIs, flat file transfer, STIX, Business/Service BUS (preferably REDHAT JBoss Fuse), DropZones
• Risk management tools / platforms (preferably RSA Archer)
• Data visualisation & reporting tools / platforms (preferably Edge Suite)
• SQL Databases (preferably MS SQL) including administration and querying
• Investigating and resolving issues in complex ICT systems, including Enterprise Server (e.g. RHEL & Windows) and Database (preferably MS SQL or Oracle) technologies
• Network infrastructures and virtualised environments (preferably VMWare)
• Experience working in a Cyber Security role with at least a basic understanding of the practices and/or technologies employed.
• For example NIPS/NIDS; Packet Capture; SIEMs; Log Collection; Computer Forensics; Vulnerability Management
• Experience in scripting in powershell or python.
• Able to develop clear and concise technical documentation, including procedures
• Comprehensive knowledge of the principles of computer and communication security, networking, and the vulnerabilities of modern operating systems and applications.
• Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams
• Able to deliver under pressure, tight deadlines and flexible targets.
• Must hold NATO Secret Security Clearance
• Candidates must be eligible to work in the EU

Desirable

• Experience in language oriented programming (.NET, C#, VBA, …)
• Experience in defining, implementing and validating NCIA NCSC security settings
• Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC.
• A solid understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
• Prior experience of working in an international environment comprising both military and civilian elements.

For information on how we process the personal data in your application, please see the Sapienza Privacy Statement here.