A highly experienced information systems security professional with at least 2 years provable experience in the management, configuration and deployment of Network Security related systems is required to provide the support services required to maintain, further develop and enhance our client’s Network Security Systems capability in Belgium.

Responsibilities will include:

Assisting in the development of the information security processes and procedures, to provide a cohesive and effective organisation wide incident response capability.

Working with the Technical Centre staff to develop and enhance the existing interfaces and remote data feeds from Cyber Defence capabilities to the Security Information and Event Management system.

The primary function of this position will be to oversee the deployment of, initial configuration of and ongoing maintenance in operational conditions of, the Cyber Defence capabilities as deployed to protect the Operational networks.

Mandatory:       Current NATO Secret Clearance or equivalent UK Government Clearance

Duration:          100 man-days, (possible 100 day extension). Monday-Friday, 38 hours a week

 The successful applicant will be expected to:

• Candidate MUST hold current NATO Security Clearance or UK Equivilent
• Hold a current certificate in Global Information Assurance Certification – Certified Intrusion Analyst (GCIA) from the SANS Institute
• Have proven experience in the configuration and management of Host Based Intrusion Detection and/or Prevention Systems (H-IDS/H-IPS). Experience on the McAfee HIPS product is an asset
• Have proven experience in the configuration and management of On-line Vulnerability Management Systems (Online VM). Experience on McAfee Vulnerability Manager Enterprise product is an asset.
• Have proven experience in the configuration and management of Full Packet Capture devices (FPC). Experience on NIKSUN NetDetector appliances is an asset.
• Have proven experience in the configuration and management of Network Based Intrusion Detection and/or Prevention Systems (N-IDS/N-IPS). Experience on the open-source SNORT IDS product is an asset.
• Have a good understanding of the deployment, configuration and maintenance of networking devices and associated management software
• Have demonstrable knowledge in the use of Network Protocol Analysis tools. Experience on Wireshark and TCPDump products is an asset
• Have proven experience gained within a CIRC/CERT/SOC environment
• Have the ability to use office automation tools to an advanced standard (MS Office Professional).
• Have demonstrable knowledge in the transfer protocols and the format of a variety of Security Events and logs and its generating sources (i.e. Firewalls, IDS, Routers, Security appliances etc).
• Be able to support client staff as necessary in the roles required to support the operational services.
• Have proven documentation experience as all works performed must be clearly documented to provide sufficient knowledge to train further Security engineers and allow the standardisation of internal procedures. Other documentation updated as required.
• Have advanced vocational training in Computer or Communication Science, or Information Systems Management, and shall have regularly attended related professional training during the past three years in Networks and Information Systems Security (certificates to be provided).