Cyber Security Incident Detection Analyst

il y a 3 semaines

Mons, Belgique Spektrum Group Temps plein

Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

**Whom we are supporting**

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

- Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
- Command and Control Systems: The NCIA develops and maintains the systems that NATO's military commanders use to plan and execute operations.
- Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
- Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.

Overall, the NCIA is critical in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

**The program**

**Assistance and Advisory Service (AAS)**

The NATO Communications and Information Agency (NCI Agency) is NATO's principal C3 capability deliverer and CIS service provider. It provides, maintains, and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV and, when required, stand together in the face of attack under Article V.

To provide these critical services in the modern, evolving, dynamic environment, the NCI Agency must build and maintain a high-performance-engaged workforce. The NCI Agency workforce strategically consists of three major categories: NATO International Civilians (NIC)s, Military (Mil), and Interim Workforce Consultants (IWC)s. The IWCs are a critical part of the overall NCI Agency workforce and comprise approximately 15 percent of the workforce.

**Working Policy**
- Mons, Belgium
- 100% Onsite

**Travel**
- Travel to other NATO location may be required

**Security Clearance**
- Must have a currently active NATO SECRET security clearance

**Contract Duration**
- **Required Start Date**:21 August 2023
- **End Contract Date**: 31 December 2023 (with potential extension)

**Specific Working Conditions**:Normal office conditions in a secure environment with standard working hours, with the exception of working in non-standard working hours up to 360 hours annually. In addition it may exceptionally be required to work non-standard hours in support of a major Cyber Incident, or on a shift system for a limited period of time due to urgent operational needs.

**Duties and Role**:
As an Incident Detection Analyst, the incumbent will provide detailed analysis of logs and network traffic. The role will involve determining the severity of security alerts through investigative analysis in addition to the following main responsibilities:

- Conduct detailed investigation and research of security events within NATO Cyber Security Centre (NCSC) team.
- Analyse firewall, IDS, anti-virus and other sensor-produced system security events and present findings.
- Provide detailed technical reports in support of incidents and capability improvements.
- Share security event/incident information with stakeholders via presentations and technical reports.
- Appropriately leverage the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) to identify malicious activity. Be able to recommend improvements to enable enhancing investigations.
- Propose possible optimisations and enhancements which help to maintain and improve NATO's Cyber Security posture.
- Implement and support threat hunting activities; create hunting hypothesis and technical reports when requested.
- Analyse intelligence information gathered from internal and external threat intelligence resources.
- Identify security gaps in NATO infrastructure and develop custom content utilising available toolset.
- Provide expert investigative support of large scale and complex security incidents.
- Develop and maintain SOAR playbooks.
- Develop and maintain SIEM use cases, their documentation and training guides.
- Support and implement day to day SOC management activities as requested.
- Produce Standard Operating Procedures covering all aspects of monitoring and detection activities.
- Support project activities in their area of responsibility when requested.
- Perform other duties as requested by management.

**Requirements**:
**Skill, Knowledge & Experience**:
**Mandatory**
- Expert level in at least three of the following areas and a high level of experience in several of the other areas:

- Security Incidents Event Management products (

  • Cyber Security Incident Detection Analyst

    il y a 3 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Incident Detection Analyst - **Working Location**:Mons, Belgium** - **Security Clearance**:NATO Secret / SC** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - **Expert level in 3+ of the following areas and a high level of experience in several of the other...

  • Cyber Security Incident Responder

    il y a 3 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer...

  • Cyber Security Analyst 1

    il y a 1 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Analyst 1 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of TCP/IP networking,...

  • Cyber Security Analyst 2

    il y a 2 semaines

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2023/002717 / Mons **Skills, knowledge, experience required**: - Experience in: - Security information and event management products (SIEM) - e.g. Splunk; - Analysis of network based intrusion detection systems (NIDS) events - e.g. FirePower, Palo Alto Network Threat...

  • Cyber Security Incident Responder

    il y a 3 semaines

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Sc2022-002065 Cyber Security Incident Responder

    il y a 3 semaines

    Mons, Belgique Park Lane Recruitment Temps plein

    Deadline Date: Monday 13 May 2024 - Location: Mons, BELGIUM - Required Start Date: 16 June 2024 **Deadline Date**:Monday 13 May 2024 **Location**: Mons, BELGIUM **Full Time On-Site**:Yes **Time On-Site**:100% **Not to Exceed Rate**: 103 EUR **Total Scope of the request** (hours): 380 **Required Start Date**: 16 June 2024 **Required Security...

  • Security Event Analyst

    il y a 1 mois

    Mons, Belgique Uni Systems Temps plein

    At Uni Systems, we are working towards turning digital visions into reality. We are continuously growing and we are looking for a professionalSecurity Event Analyst to join our UniQue Mons team. In this role, you will have the opportunity to work closely with our customers in the public sector and you will be responsible for developing new business by...

  • Cyber Security Incident Investigator

    il y a 2 semaines

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2022/002064 / Mons **Skills, knowledge, experience required**: - At least 8 years’ demonstrable experience in handing complex cyber security incidents, ideally in an international, governmental or military environment; - Certification in: - Cyber security incident...

  • First Line Security Event Analyst

    il y a 5 jours

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C001782 / Mons **Skills, knowledge, experience required**: - The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; - Comprehensive knowledge of the principles of computer and communications security including...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C003333 / Mons **Skills, knowledge, experience required**: - The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; - Comprehensive knowledge of the principles of computer and communications security including...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C003186 / Mons **Skills, knowledge, experience required**: - The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; - Comprehensive knowledge of the principles of computer and communications security including...

  • First Line Security Event Analyst

    il y a 7 jours

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C001886 / Mons **Skills, knowledge, experience required**: - The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; - Comprehensive knowledge of the principles of computer and communications security including...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C001230 / Mons **Skills, knowledge, experience required**: - The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis; - Comprehensive knowledge of the principles of computer and communications security including...

  • First Line Security Event Analyst

    il y a 2 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 1 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of...

  • First Line Security Event Analyst

    il y a 2 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 3 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 1 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 4 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of...

  • Senior Incident Detection Analyst

    il y a 2 semaines

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2023/002718 / Mons **Skills, knowledge, experience required**: - At least two years of demonstrable experience in security monitoring and analysis of enterprise level cloud environments (AWS and/or Azure); - Expertise in at least three of the following areas and a high...

  • First Line Security Event Analyst

    il y a 1 semaine

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C000244 / Mons **Introduction**: As a First Line Security Event Analyst (FLSEA), the incumbent will perform initial analysis of logs and network traffic, determine alert severity and escalate when required. The analyst will collate information and present findings in a...

  • First Line Security Event Analyst

    Il y a 2 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **First Line Security Event Analyst (FLSEA) 6 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Comprehensive knowledge of the principles of computer and communications security including knowledge of...