Cyber Security Data

il y a 1 semaine

Mons, Wallonie, Belgique Vector Synergy Temps plein

Location:

Security Clearance:

Reference No.

Mons, Belgium

NATO Secret

C002720 / Mons

Skills, knowledge, experience required:

  • At least 1 year of extensive practical experience as Splunk administrator (deployment, installation, configuration and maintenance);
  • At least 2 years expert level experience related to SIEM/LogA management activities;
  • Extensive hands on experience in regular expressions;
  • Extensive experience with onboarding and managing data feeds within a SIEM environment;
  • Practical experience in designing solutions to ingest new data feeds into SIEM;
  • Practical handson experience in systems and tools administration, especially Linux environment;
  • Practical skills in writing Bash, Python or Ansible scripts to support repetitive tasks automation;
  • Ability to develop clear and concise technical documentation, including procedures;
  • Demonstrable ability to work autonomously and proactively, to understand the chain of command and to follow internal processes;
  • Good communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams.

Desirable:

  • Extensive practical experience as Splunk administrator in large enterprise environment (deployment, installation, configuration and maintenance);
  • Practical experience with:
  • Splunk Enterprise security, Phantom and UBA;
  • MicroFocus ArcSight (as system administrator);
  • Experience in
  • Creation/modification of custom parsers or flex connectors;
  • Software engineering including programming and/or scripting knowledge (python, shell scripting, MS PowerShell);
  • Developing Splunk Applications;
  • Experience with GIT;
  • Prior experience:
  • In automating interactions between systems using APIs;
  • As a user of SIEM and Log aggregation systems;
  • Previous experience in:
  • Working for Cyber Security related organisations (CERTs, security offices);
  • Working in an international environment comprising both military and civilian elements;
  • Handson experience with network infrastructure and virtualized environments (preferably VMWare);
  • Content management experience with Splunk, especially Enterprise Security and Advanced Search and Reporting;
  • Handson experience with Ansible as an automation technology;
  • Proficient with SIEM content creation correlation rules, reports, dashboards;
  • Understanding the Indicator of Compromise (IOC) concept and experience in integration of Threat Intel feeds and IOCs with SIEM platform;
  • A solid understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.);
  • ITIL Service Management certifications;
  • Industry leading certification in the area of Cyber Security such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC and CFCE.

Duties/role:

  • Acting as the Chief Technician and Subject Matter Expert (SME) for log collection systems within the Cyber Security Data team;
  • Managing multiple types, formats and quantities of data feeds to ensure established events and alerts are ingested from various log sources across NATO networks into the NCSC central security logging platform;
  • Providing advice and technical assistance to other stakeholders, maintaining technical expertise, awareness, and developments in related new technologies, and providing technical contributions to any projects related to the log collection systems;
  • Managing data feeds;
  • Ensuring:
  • Proper receipt of events from different sources;
  • That all system components are continuously monitored and take appropriate technical and nontechnical actions for solving detected issues;
  • That the Log Source Monitoring (SolarWinds or Splunk) solution is operational and that alerts are generated and actioned upon for any major changes in service;
  • That log collection systems operate within any KPI's, as defined in Service Level Agreements with NCSC customers;
  • All data feeds are monitored in real time and issues are immediately identified and worked upon;
  • Correcting data parsing issues;
  • Keeping an inventory of all log sources from all monitored networks;
  • Coordinating activities with log source providers at remote sites to ensure that data and logs are received into the NCSC central logging platform;
  • Establishing and maintaining a defined list of contacts with CIS support personnel from remote sites;
  • Following ITIL standards, providing support to Operations and Service Delivery management covering all stages of the log collection systems lifecycle with the emphasis on the log collection aspects (e.g. Service Design, Transition, Operations, Change Management and Continual Service Improvement);
  • Supporting the integration with external tools and providing technical assistance for any associated activities;
  • Identifying and proposing system improvements proactively to ensure an uptodate and stable environment;
  • Justifying business needs, preparing documentation an

  • Cyber Security Senior Automation Specialist

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Expert knowledge and demonstrable experience in scripting, automation, playbook development, and integration with tools...

  • Cyber Security Senior Automation Specialist

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Detailed knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection...

  • Cyber Security Incident Responder

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response...

  • Cyber Security Senior Automation

    il y a 1 semaine

    Mons, Wallonie, Belgique Spektrum Group Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Whom we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...

  • Cyber Security Incident Responder

    il y a 1 semaine

    Mons, Wallonie, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Who we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...

  • Cyber Analyst 3

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Analyst 3- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Knowledge and multiyear experience in organization, management and support of various (international) operations, activities, units and projects...

  • Cyber Security Senior Automation Specialist

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Strong knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection...

  • Cyber Security Analyst 1

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Analyst 1- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking, Windows and Linux...

  • Cyber Security Senior Automation Specialist

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Cosmic Top Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 3+ years' experience in various areas of:ü Latest Virtualization Technologies and Operating Systemsü...

  • Cyber Security Incident Detection Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Incident Detection Analyst- Working Location:Mons, Belgium**- Security Clearance:NATO Secret / SC**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - **Expert level in 3+ of the following areas and a high level of experience in several of the other areas: ü **Security...

  • Cyber Security Senior Automation Specialist

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Strong knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection...

  • Cyber Security Incident Detection Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Spektrum Group Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Whom we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...

  • Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Uni Systems Temps plein

    At Uni Systems, we are working towards turning digital visions into reality. We are continuously growing and we are looking for a professionalSecurity Event Analyst to join our UniQue Mons team.In this role, you will have the opportunity to work closely with our customers in the public sector and you will be responsible for developing new business by...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 2- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 6- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 1Working Location:Mons, Belgium- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Vector Synergy Temps plein

    Location:Mons, BelgiumSecurity Clearance:NATO SecretReference No:C003259 / MonsSkills, knowledge, experience required: The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Vector Synergy Temps plein

    Location:Mons, BelgiumSecurity Clearance:NATO SecretReference No:C003187 / MonsSkills, knowledge, experience required: The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; Experience in the following: Security Information and Event Management products (SIEM) e.g. ArcSight, Splunk; Analysis...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Wallonie, Belgique Vector Synergy Temps plein

    Location:Mons, BelgiumSecurity Clearance:NATO SecretReference No:C001886 / MonsSkills, knowledge, experience required: The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission...

  • Cyber Security

    il y a 1 semaine

    Mons, Wallonie, Belgique Vector Synergy Temps plein

    Location:Security Clearance:Reference No.Mons, BelgiumNATO SecretC000198 / MonsSkills, knowledge, experience required: Very good experience with Palo Alto Networks Firewalls and Palo Alto Networks Panorama; Very Good experience and knowledge of Computer and Networks Security principles and procedures; Very Good experience of UNIX and Microsoft Operating...