Cyber Security Senior Automation Specialist

Il y a 5 mois

Mons, Belgique Enterpryze Consulting Ltd. Temps plein

**Cyber Security Senior Automation Specialist
- **Working Location**:Mons, Belgium**
- **Security Clearance**: NATO Secret**
- **Language**:High proficiency level in English language

**EXPERIENCE AND EDUCATION:
**Essential Qualifications/Experience:
- Strong knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits to the protection of CIS infrastructures
- Strong knowledge and demonstrable experience with scripting languages and integration tools including Python, PowerShell and Bash
- Hands on experience with Splunk ES suite and Splunk SOAR (Experience with other SOAR systems will also be considered)
- Good understanding of:
ü Cyber security event triage, analysis and response

ü Network security devices and log sources used in SIEM

ü Network communication protocols

**Desirable Qualifications/Experience**:

- Expert level of knowledge and demonstrable experience with Splunk ES suite and Phantom SOAR
- Expert level of knowledge and demonstrable experience Python scripting language and related frameworks
- Strong understanding of Git
- Industry leading certification in the area of cyber security

**DUTIES/ROLE**:

- Develop tools, scripts, automation and integrations to automate complex cyber security activities, primarily using Splunk SOAR, Python, Bash and PowerShell
- Maintain and develop existing Splunk SOAR playbooks
- Use automation tools to leverage third party intelligence resources and APIs
- Manage and create documentation related to automation tools
- Work closely with other teams and personnel within NCSC to identify and design new automation capabilities and procedural workflows
- Create dashboards and reports for situational security awareness purposes and business performance reporting
- Identify, report and track misconfigurations in security tools
- Support project activities and the wider operational teams as required
- Secure environment with standard working hours, with the exception of working in non-standard working hours up to 360 hours annually. In addition, it may exceptionally be required to work non-standard hours in support of a major Cyber Incident, or on a shift system for a limited period of time due to urgent operational needs

**Deliverables**:

- Develop and maintain automation tools and playbooks that save NCSC Ops branch at least 3000 hours per annum. Once this initial automation capability is delivered, the provider shall maintain it, make updates as requested, and further mature the Ops branch automation capability by providing new automation tools and playbooks every month that save NCSC Ops 100 hours per annum
- Implement useful, custom automation playbooks for each deployed detection use case
- Liase with security tools managers to deploy and configure new apps or tools, and be responsible for following the change process related to delivery of this service
- Maintain and update existing automation playbooks and documentation. Issues with automation tools supporting critical alerts shall be resolved within one working day and expected availability of automation playbooks is 99%
- Respond to new automation requests with development plans. Including estimation of development and maintenance time required, in order for the return on investment to be estimated and to get management approval before resources are directed towards the development
- For coordination purposes and due to the access required, the provider of this service shall work onsite, at SHAPE, Mons, Belgium
- Work with NCSC Ops branch to identify and propose new automation solutions and improvements
- Respond to ad-hoc tasks given by the service delivery manager and cell head
- Expected to provide high quality deliverables in accordance with internal processes
- Responsible for complying with all applicable local employment laws, in addition to following all SHAPE & NCIA onboarding procedures. Delivery of the service cannot begin until these requirements are fulfilled
- Each provider of this service must pass an assessment to demonstrate proficiency before being approved to provide the service. The assessment will follow a brief familiarisation period
- For each individual delivering the service, the provider shall allocate 10 working days to the initial NCSC Ops familiarisation and assessment process. Delivery of the service cannot begin until this is complete

  • Cyber Security Senior Automation Specialist

    Il y a 4 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Detailed knowledge of Security, Orchestrations, Automation and Response (SOAR) concepts and their benefits...

  • Cyber Security Senior Automation Specialist

    Il y a 4 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Expert knowledge and demonstrable experience in scripting, automation, playbook development, and...

  • Cyber Security Senior Automation Specialist

    Il y a 4 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Senior Automation Specialist - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Cosmic Top Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 3+ years' experience in various areas of: ü Latest Virtualization Technologies and Operating...

  • Cyber Security Incident Investigator

    Il y a 5 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2022/002064 / Mons **Skills, knowledge, experience required**: - At least 8 years’ demonstrable experience in handing complex cyber security incidents, ideally in an international, governmental or military environment; - Certification in: - Cyber security incident...

  • Cyber Security Incident Responder

    Il y a 4 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2022/002065/5 / Mons **Skills, knowledge, experience required**: - At least 3 years’ experience in Information and Knowledge Management, ideally in the field of Cyber Security; - Experience in interfacing with IT Service Management (ITSM); - Recent practical, hands-on...

  • Cyber Security Incident Responder

    Il y a 4 mois

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyber Security Incident Responder

    Il y a 4 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer...

  • Threat Hunter

    Il y a 5 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Threat Hunter - Cyber Security Data - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 1+ year of experience using/administering Splunk Enterprise - 2+ years of extensive practical experience as a tool...

  • Cyber Security Incident Detection Analyst

    Il y a 4 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Incident Detection Analyst - **Working Location**:Mons, Belgium** - **Security Clearance**:NATO Secret / SC** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - **Expert level in 3+ of the following areas and a high level of experience in several of the other...

  • Cyber Incident Responder

    Il y a 4 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C003640 / Mons **Skills, knowledge, experience required**: - Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management, technical and non-technical). **Desirable**: - A...

  • Cyber Incident Responder

    Il y a 5 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience**: - Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management,...

  • Cyber Incident Responder

    Il y a 5 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience**: - Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management,...

  • Cyber Security Sme Support

    Il y a 5 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C001952 / Mons **Skills, knowledge, experience required**: - Extensive knowledge and experience (more than 5 years) in the following areas: - General, wide breadth knowledge of cyber security principles, best practices, concepts and technology; - Solid knowledge of cyber...

  • Threat Hunter

    Il y a 5 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C002970 / Mons **Skills, knowledge, experience required**: - A minimum requirement of a Bachelor's degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience, OR OR - Experience that is/are of interest to NCI Agency,...

  • Cyber Incident Responder

    Il y a 5 mois

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyber Incident Responder

    il y a 7 jours

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response Team, ideally making...

  • Cyber Security Technical Support

    il y a 1 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Technical Support - **Working Location**:Mons, Belgium** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - A university degree in a relevant discipline and 3 years of specific experience - Extensive knowledge of modern communication and Internet Protocol (IP)...

  • Cyber Incident Responder

    Il y a 5 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C003641 / Mons **Skills, knowledge, experience required**: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response Team, ideally making use of the MITRE...

  • Threat Hunter

    Il y a 5 mois

    Mons, Belgique Spektrum Group Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Whom we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyber Analyst 3

    Il y a 5 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Analyst 3 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Knowledge and multiyear experience in organization, management and support of various (international) operations, activities, units...