Cyber Threat Hunter

il y a 11 heures

Mons, Belgique Spektrum Temps plein

Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

**Who we are supporting**

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

- Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
- Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
- Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
- Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

**The program**

**Assistance and Advisory Service (AAS)**

The NATO Communications and Information Agency (NCI Agency) is NATO's principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

**Role Background**

The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.

The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC's role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services.

The Portfolio ranges from Programme of Work (POW) activities funded via the NATO Military Budget (MB) to Critical / Urgent Requirements (CURs/URs) and NATO Security Investment Programme (NSIP) projects funded via the Investment Budget (IB). In some edge cases, projects are also funded via the Civilian Budget (CB). Projects can span multiple years and are governed by various frameworks, including the Common Funded Capability Development Governance Framework (CFCDGM).

In order to execute this work, the NCI Agency requires support with the work undertaken by the NATO Cyber Security Centre (NCSC) in the area of Communications and Information System (CIS) security, cyber defence and cyberspace operations

**Role Duties and Responsibilities**
- Based on threat intelligence reports, create or modify corresponding threat hunting hypotheses and queries in specific tools languages such as Splunk Search Processing Language (SPL), Kusto Query (KQL), Yara, Sigma or Fidelis Endpoint rules to look for traces of malicious activities in existing logs and systems.
- Define the list of systems as scope for a threat hunting campaign based on input such as technology targeted, responsible entity, network area and classification. As source for this list, they will use and correlate the following resources:

- Internal database of systems and entities in the NCSC Wiki
- NCIA CMDB
- External CMDBs made available by the NCIA customers
- If the information cannot be found in any database, the IT administrators or other relevant stakeholders must be contacted.
- Participate in Threat Hunting campaigns by running adequate queries on systems in scope and follow-up to confirm or infirm findings by correlating computer forensics artefacts by using available EDR or telemetry from the endpoints.
- Produce briefings in Microsoft PowerPoint or Word format to describe the Threat Hunting campaign, methodology, findings and recommendations.
- Use and configure

  • Threat Hunting Analyst

    Il y a 7 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Threat Hunting Analyst - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Experience in analysis of threat actor group attack patterns, tactics, techniques, and procedures (TTPs). - Knowledge of the...

  • Threat Hunting Analyst

    Il y a 7 mois

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C002914 / Mons **Skills, knowledge, experience required**: - Experience in: - Analysis of threat actor group attack patterns, tactics, techniques, and procedures (TTPs); - Performing in-depth cyber security analysis in large, complex networks using security use cases,...

  • Threat Hunting Analyst

    Il y a 7 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Threat Hunting Analyst - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Experience in analysis of threat actor group attack patterns, tactics, techniques, and procedures (TTPs). - Knowledge of the...

  • Threat Hunting Analyst

    il y a 1 semaine

    Mons, Belgique Systems Planning and Analysis, Inc. Temps plein

    Overview: Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and...

  • Threat Hunting Analyst

    il y a 4 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Threat Hunting Analyst** - **Working Location**:Mons, Belgium** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION**: **Essential Qualifications/Experience**: - Significant demonstrable experience in Cyber Security related environment - Experience in producing accurate and meaningful reports, both technical and...

  • Threat Hunting Analyst

    Il y a 7 mois

    Mons, Belgique Spektrum Group Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Threat Hunting Analyst

    il y a 4 semaines

    Mons, Belgique Vector Synergy Temps plein

    **Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C003950 / Mons **Skills, knowledge, experience required**: - Significant demonstrable experience in Cyber Security related environment; - Excellent analytical and hypothetical thinking; - Experience in liaising at both the technical and managerial level, the incumbent must...

  • Threat Hunting Analyst

    Il y a 7 mois

    Mons, Belgique Spektrum Group Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Whom we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Threat Hunting Analyst

    il y a 6 jours

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyberspace Operations Threat Hunting Support 1

    il y a 4 semaines

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyberspace Operations Threat Hunting Support 1** - **Working Location**:Mons, Belgium** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION**: **Essential Qualifications/Experience**: - Experience in threat hunting and threat hunting methodologies - Experience in writing Splunk queries using SPL - Experience in analysing...

  • Cyber Analyst 3

    Il y a 7 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Analyst 3 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Knowledge and multiyear experience in organization, management and support of various (international) operations, activities, units...

  • Cyber Incident Responder

    Il y a 7 mois

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyber Security Incident Detection Analyst

    il y a 4 jours

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Cyber Security Incident Detection Analyst - **Working Location**:Mons, Belgium** - **Security Clearance**:NATO Secret / SC** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - **Expert level in 3+ of the following areas and a high level of experience in several of the other...

  • Cyber Security Incident Responder

    Il y a 7 mois

    Mons, Belgique Spektrum Temps plein

    Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Who we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...

  • Cyber Incident Responder

    Il y a 2 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level Computer Emergency Response Team, ideally making...

  • Second Line Security Event Analyst Threat Hunting

    il y a 2 semaines

    Mons, Belgique MCR, LLC. Temps plein

    **Get an edge on advancing your career** If you’re ready to meet complex challenges, we’re ready to meet you. MCR is a fast-growing global company headquartered in McLean, VA that supports defense and civilian agencies, NATO, and European ministries that face some of the most complex mission challenges in the world. If you are the best at what you do,...

  • Threat Hunting Support 1/2

    il y a 4 jours

    Mons, Belgique AbAKUS IT Solutions Temps plein

    **Key Responsibilities**: - Splunk Query Development: Craft and optimize SPL queries for effective data analysis. - Forensic Analysis: Examine Windows artifacts such as Event Logs, UAL, and MFT. - Event Analysis: Analyze Sysmon events to uncover potential threats. - Collaboration: Participate in internal discussions to enhance service quality and...

  • Cyber Incident Responder

    Il y a 7 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience**: - Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management,...

  • Cyber Incident Responder

    Il y a 7 mois

    Mons, Belgique Enterpryze Consulting Ltd. Temps plein

    **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience**: - Excellent communications skills and reporting experience with capacity to communicate to different types of audience (senior executive, middle management,...

  • Cyber Security Incident Detection Analyst

    il y a 2 semaines

    Mons, Belgique Systems Planning and Analysis, Inc. Temps plein

    Overview: - MCR, an SPA company, is a fast-growing global company headquartered in Northern Virginia that supports defense and civilian agencies, NATO, and European ministries that face some of the most complex mission challenges in the world. If you are the best at what you do, we are looking for you. At MCR/SPA, you will contribute to programs and...