Cyber Security Senior Automation Specialist
il y a 1 semaine
-
Working Location:Mons, Belgium**-
Security Clearance: NATO Secret**-
Language:High proficiency level in English language
**EXPERIENCE AND EDUCATION:
**Essential Qualifications/Experience: - Strong knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection of CIS infrastructures
- Strong knowledge and demonstrable experience with scripting languages and integration tools including Python, PowerShell and Bash
- Hands on experience with Splunk ES suite and Splunk SOAR (Experience with other SOAR systems will also be considered)
- Good understanding of:
ü Network security devices and log sources used in SIEM
ü Network communication protocols
Desirable Qualifications/Experience:
- Expert level of knowledge and demonstrable experience with Splunk ES suite and Phantom SOAR
- Expert level of knowledge and demonstrable experience Python scripting language and related frameworks
- Strong understanding of Git
- Industry leading certification in the area of cyber security
DUTIES/ROLE:
- Develop tools, scripts, automation and integrations to automate complex cyber security activities, primarily using Splunk SOAR, Python, Bash and PowerShell
- Maintain and develop existing Splunk SOAR playbooks
- Use automation tools to leverage third party intelligence resources and APIs
- Manage and create documentation related to automation tools
- Work closely with other teams and personnel within NCSC to identify and design new automation capabilities and procedural workflows
- Create dashboards and reports for situational security awareness purposes and business performance reporting
- Identify, report and track misconfigurations in security tools
- Support project activities and the wider operational teams as required
- Secure environment with standard working hours, with the exception of working in nonstandard working hours up to 360 hours annually. In addition, it may exceptionally be required to work nonstandard hours in support of a major Cyber Incident, or on a shift system for a limited period of time due to urgent operational needs
Deliverables:
- Develop and maintain automation tools and playbooks that save NCSC Ops branch at least 3000 hours per annum. Once this initial automation capability is delivered, the provider shall maintain it, make updates as requested, and further mature the Ops branch automation capability by providing new automation tools and playbooks every month that save NCSC Ops 100 hours per annum
- Implement useful, custom automation playbooks for each deployed detection use case
- Liase with security tools managers to deploy and configure new apps or tools, and be responsible for following the change process related to delivery of this service
- Maintain and update existing automation playbooks and documentation. Issues with automation tools supporting critical alerts shall be resolved within one working day and expected availability of automation playbooks is 99%
- Respond to new automation requests with development plans. Including estimation of development and maintenance time required, in order for the return on investment to be estimated and to get management approval before resources are directed towards the development
- For coordination purposes and due to the access required, the provider of this service shall work onsite, at SHAPE, Mons, Belgium
- Work with NCSC Ops branch to identify and propose new automation solutions and improvements
- Respond to adhoc tasks given by the service delivery manager and cell head
- Expected to provide high quality deliverables in accordance with internal processes
- Responsible for complying with all applicable local employment laws, in addition to following all SHAPE & NCIA onboarding procedures. Delivery of the service cannot begin until these requirements are fulfilled
- Each provider of this service must pass an assessment to demonstrate proficiency before being approved to provide the service. The assessment will follow a brief familiarisation period
- For each individual delivering the service, the provider shall allocate 10 working days to the initial NCSC Ops familiarisation and assessment process. Delivery of the service cannot begin until this is complete
-
Cyber Security Senior Automation Specialist
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Strong knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection...
-
Cyber Security Senior Automation Specialist
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Detailed knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection...
-
Cyber Security Senior Automation Specialist
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Expert knowledge and demonstrable experience in scripting, automation, playbook development, and integration with tools...
-
Cyber Security Senior Automation Specialist
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Senior Automation Specialist- Working Location:Mons, Belgium**- Security Clearance: NATO Cosmic Top Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 3+ years' experience in various areas of:ü Latest Virtualization Technologies and Operating Systemsü...
-
Cyber Security Senior Automation
il y a 1 semaine
Mons, Wallonie, Belgique Spektrum Group Temps pleinSpektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Whom we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...
-
Cyber Security Incident Responder
il y a 1 semaine
Mons, Wallonie, Belgique Spektrum Temps pleinSpektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Who we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...
-
Cyber Security Data
il y a 1 semaine
Mons, Wallonie, Belgique Vector Synergy Temps pleinLocation:Security Clearance:Reference No.Mons, BelgiumNATO SecretC002720 / MonsSkills, knowledge, experience required: At least 1 year of extensive practical experience as Splunk administrator (deployment, installation, configuration and maintenance); At least 2 years expert level experience related to SIEM/LogA management activities; Extensive hands on...
-
Cyber Security Incident Detection Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Incident Detection Analyst- Working Location:Mons, Belgium**- Security Clearance:NATO Secret / SC**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - **Expert level in 3+ of the following areas and a high level of experience in several of the other areas: ü **Security...
-
Cyber Security Incident Responder
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps pleinWorking Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response...
-
Cyber Security Analyst 1
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Analyst 1- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking, Windows and Linux...
-
Cyber Security Incident Detection Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Spektrum Group Temps pleinSpektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Whom we are supportingThe NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to...
-
Cyber Analyst 3
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Analyst 3- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Knowledge and multiyear experience in organization, management and support of various (international) operations, activities, units and projects...
-
Cyber Security
il y a 1 semaine
Mons, Wallonie, Belgique Vector Synergy Temps pleinLocation:Security Clearance:Reference No.Mons, BelgiumNATO SecretC000198 / MonsSkills, knowledge, experience required: Very good experience with Palo Alto Networks Firewalls and Palo Alto Networks Panorama; Very Good experience and knowledge of Computer and Networks Security principles and procedures; Very Good experience of UNIX and Microsoft Operating...
-
Second Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Business Integra Inc Temps pleinRequired Security Clearance: NATO SECRETSpecific Working Conditions:Normal Office Conditions. Secure environment with standard working hours, with the exception of working in non-standard working hours up to 360 hours annually. In addition it may exceptionally be required to work non-standard hours in support of a major Cyber Incident, or on a shift system...
-
Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Uni Systems Temps pleinAt Uni Systems, we are working towards turning digital visions into reality. We are continuously growing and we are looking for a professionalSecurity Event Analyst to join our UniQue Mons team.In this role, you will have the opportunity to work closely with our customers in the public sector and you will be responsible for developing new business by...
-
Second Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Vector Synergy Temps pleinLocation:Mons, BelgiumSecurity Clearance:NATO SecretReference No:C002337 / MonsSkills, knowledge, experience required: OR experience that is/are of interest to NCIA; that is, at least 7 years extensive and progressive expertise in the duties related to the function of the post; Expert level in at least three of the following areas and a high level of...
-
Second Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Spektrum Group Temps pleinSpektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Spektrum have a wide range of exciting opportunities in several global locations.We are always looking to add great new talent to our team and look forward to hearing from you.Specific...
-
First Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**First Line Security Event Analyst (FLSEA) 6- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...
-
First Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**First Line Security Event Analyst (FLSEA) 2- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...
-
First Line Security Event Analyst
il y a 1 semaine
Mons, Wallonie, Belgique Enterpryze Consulting Ltd. Temps plein**First Line Security Event Analyst (FLSEA) 3- Working Location:Mons, Belgium**- Security Clearance: NATO Secret**- Language:High proficiency level in English language**EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...
