Cyber Security Data
il y a 2 semaines
**Location**:
**Security Clearance**:
Reference No.
Mons, Belgium
NATO Secret
C002720 / Mons
**Skills, knowledge, experience required**:
- At least 1 year of extensive practical experience as Splunk administrator (deployment, installation, configuration and maintenance);
- At least 2 years expert level experience related to SIEM/LogA management activities;
- Extensive hands on experience in regular expressions;
- Extensive experience with on-boarding and managing data feeds within a SIEM environment;
- Practical experience in designing solutions to ingest new data feeds into SIEM;
- Practical hands-on experience in systems and tools administration, especially Linux environment;
- Practical skills in writing Bash, Python or Ansible scripts to support repetitive tasks automation;
- Ability to develop clear and concise technical documentation, including procedures;
- Demonstrable ability to work autonomously and proactively, to understand the chain of command and to follow internal processes;
- Good communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams.
**Desirable**:
- Extensive practical experience as Splunk administrator in large enterprise environment (deployment, installation, configuration and maintenance);
- Practical experience with:
- Splunk Enterprise security, Phantom and UBA;
- MicroFocus ArcSight (as system administrator);
- Experience in
- Creation/modification of custom parsers or flex connectors;
- Software engineering including programming and/or scripting knowledge (python, shell scripting, MS PowerShell);
- Developing Splunk Applications;
- Experience with GIT;
- Prior experience:
- In automating interactions between systems using APIs;
- As a user of SIEM and Log aggregation systems;
- Previous experience in:
- Working for Cyber Security related organisations (CERTs, security offices);
- Working in an international environment comprising both military and civilian elements;
- Hands-on experience with network infrastructure and virtualized environments (preferably VMWare);
- Content management experience with Splunk, especially Enterprise Security and Advanced Search and Reporting;
- Hands-on experience with Ansible as an automation technology;
- Proficient with SIEM content creation - correlation rules, reports, dashboards;
- Understanding the Indicator of Compromise (IOC) concept and experience in integration of Threat Intel feeds and IOCs with SIEM platform;
- A solid understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.);
- ITIL Service Management certifications;
- Industry leading certification in the area of Cyber Security such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC and CFCE.
**Duties/role**:
- Acting as the Chief Technician and Subject Matter Expert (SME) for log collection systems within the Cyber Security Data team;
- Managing multiple types, formats and quantities of data feeds to ensure established events and alerts are ingested from various log sources across NATO networks into the NCSC central security logging platform;
- Providing advice and technical assistance to other stakeholders, maintaining technical expertise, awareness, and developments in related new technologies, and providing technical contributions to any projects related to the log collection systems;
- Managing data feeds;
- Ensuring:
- Proper receipt of events from different sources;
- That all system components are continuously monitored and take appropriate technical and non-technical actions for solving detected issues;
- That the Log Source Monitoring (SolarWinds or Splunk) solution is operational and that alerts are generated and actioned upon for any major changes in service;
- That log collection systems operate within any KPI's, as defined in Service Level Agreements with NCSC customers;
- All data feeds are monitored in real time and issues are immediately identified and worked upon;
- Correcting data parsing issues;
- Keeping an inventory of all log sources from all monitored networks;
- Coordinating activities with log source providers at remote sites to ensure that data and logs are received into the NCSC central logging platform;
- Establishing and maintaining a defined list of contacts with CIS support personnel from remote sites;
- Following ITIL standards, providing support to Operations and Service Delivery management covering all stages of the log collection systems lifecycle with the emphasis on the log collection aspects (e.g. Service Design, Transition, Operations, Change Management and Continual Service Improvement);
- Supporting the integration with external tools and providing technical assistance for any associated activities;
- Identifying and proposing system improvements proactively to ensure an up-to-date and stable environment;
- Justifying business needs, preparing documentation an
-
Threat Hunter
il y a 7 jours
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Threat Hunter - Cyber Security Data - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 1+ year of experience using/administering Splunk Enterprise - 2+ years of extensive practical experience as a tool...
-
Cyber Security Data Log Specialist
il y a 1 semaine
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Data Log Specialist - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - 1+ year of extensive practical experience as Splunk administrator (deployment, installation, configuration and...
-
Cyber Security Engineer
il y a 4 semaines
Mons, Wallonie, Belgique Aptonet Inc Temps pleinJob Title: Cyber Security Engineer (Endpoint) Location: Mons, Belgium Job Description: We are seeking a skilled Cyber Security Engineer specializing in endpoint protection to provide comprehensive support and consultancy services across a multinational defense environment. The role focuses on implementing, managing, and optimizing enterprise-level...
-
Cyber Security Engineer
il y a 2 semaines
Mons, Wallonie, Belgique Aptonet Inc Temps pleinJob Title: Cyber Security Engineer (Endpoint) Location: Mons, Belgium Job Description: We are seeking a skilled Cyber Security Engineer specializing in endpoint protection to provide comprehensive support and consultancy services across a multinational defense environment. The role focuses on implementing, managing, and optimizing enterprise-level endpoint...
-
Cyber Security Engineer
il y a 7 jours
Mons, Wallonie, Belgique Aptonet Inc Temps pleinJob Title: Cyber Security Engineer (Endpoint) Location: Mons, BelgiumJob Description:We are seeking a skilled Cyber Security Engineer specializing in endpoint protection to provide comprehensive support and consultancy services across a multinational defense environment. The role focuses on implementing, managing, and optimizing enterprise-level endpoint...
-
Threat Hunter
il y a 7 jours
Mons, Belgique Vector Synergy Temps plein**Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: C002970 / Mons **Skills, knowledge, experience required**: - A minimum requirement of a Bachelor's degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience, OR OR - Experience that is/are of interest to NCI Agency,...
-
Cyber Security Specialist
il y a 1 semaine
Mons, Wallonie, Belgique NATO Temps pleinAbout Us:\NATO's Communications and Information Agency (NCI Agency) has been providing the means for connectedness and togetherness in the Alliance for over 70 years. With a team of 3000 civilian and military staff across 29 locations, we enable critical operations, protect airspace, make data-driven decisions, defend against cyber-attacks, secure NATO...
-
Cyber Security Expert
il y a 2 semaines
Mons, Wallonie, Belgique Aptonet Inc Temps pleinJob Title: Cyber Security ExpertAptonet Inc is seeking a highly skilled Cyber Security Expert to join our team. We are looking for an individual who has extensive experience in endpoint protection and can provide comprehensive support and consultancy services across a multinational defense environment.Key Responsibilities:Provide expert-level support on...
-
Cyber Security Jira Developer
il y a 2 semaines
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security JIRA Developer - **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret / **SC - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Expert level in: ü Development on the Atlassian Jira Platform ü Administration of the Atlassian Jira Platform -...
-
Cyber Security Jira Developer
il y a 2 jours
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security JIRA Developer - **Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret / SC - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience**: - Expert level in: - Development on the Atlassian Jira Platform - Administration of the Atlassian Jira Platform -...
-
Cyber Security Incident Investigator
il y a 2 semaines
Mons, Belgique Vector Synergy Temps plein**Location**: Mons, Belgium **Security Clearance**: NATO Secret **Reference No**: SC2022/002064 / Mons **Skills, knowledge, experience required**: - At least 8 years’ demonstrable experience in handing complex cyber security incidents, ideally in an international, governmental or military environment; - Certification in: - Cyber security incident...
-
Cyber Security Incident Investigator
il y a 2 semaines
Mons, Belgique Systems Planning and Analysis, Inc. Temps pleinOverview: Systems Planning and Analysis, Inc. (SPA) is a well-established and progressive defense contracting company in the Northern Virginia area just a few miles south of the Pentagon. We are a professional services firm established in 1972 that has a long-standing reputation for unrivaled technical and analytical support to some of the top decision...
-
Cyber Security Specialist
il y a 2 jours
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Specialist - **Security Clearance**:NATO Secret /SC - **Working Location**:Mons, Belgium - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - Extensive knowledge and experience (5+ years) in: - General, wide breadth knowledge of cyber security principles, best...
-
NATO Cyber Security Expert
il y a 6 jours
Mons, Wallonie, Belgique NATO Temps pleinYour ResponsibilitiesAs a Senior Cyber Security Defender, your responsibilities will include:Acting as a main engineer and SME for SIEM and Log Collection services;Providing advice and technical assistance to other stakeholders;Managing and developing data security systems;Coordinating team efforts, training, and coaching new team members;Establishing and...
-
Cyber Security Incident Investigator
il y a 13 heures
Mons, Belgique Systems Planning and Analysis, Inc. Temps pleinOverview: MCR, an SPA company, is a fast-growing global company headquartered in Northern Virginia that supports defense and civilian agencies, NATO, and European ministries that face some of the most complex mission challenges in the world. If you are the best at what you do, we are looking for you. At MCR/SPA, you will contribute to programs and projects...
-
Cyber Security Incident Responder
il y a 1 semaine
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Working Location**:Mons, Belgium - **Security Clearance**:NATO Secret / **SC - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION**: **Essential Qualifications/Experience**: - Recent practical, hands-on experience of Intrusion Detection and Incident Response (TRIAGE, Contain, Eradicate, Recover) in an enterprise-level...
-
Cyber Security Incident Investigator 2
il y a 14 heures
Mons, Belgique Enterpryze Consulting Ltd. Temps plein**Cyber Security Incident Investigator 2 - **Working Location**:Mons, Belgium** - **Security Clearance**: NATO Secret** - **Language**:High proficiency level in English language **EXPERIENCE AND EDUCATION: **Essential Qualifications/Experience: - A professional certification on Cyber Security Incident Handling - A professional certification on IT Service...
-
Threat Hunter
il y a 6 jours
Mons, Belgique Spektrum Group Temps pleinSpektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. **Whom we are supporting** The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT)...
-
Cyber Security Jira Developer
il y a 2 semaines
Mons, Belgique Systems Planning and Analysis, Inc. Temps pleinOverview: Systems Planning and Analysis, Inc. (SPA) is a well-established and progressive defense contracting company in the Northern Virginia area just a few miles south of the Pentagon. We are a professional services firm established in 1972 that has a long-standing reputation for unrivaled technical and analytical support to some of the top decision...
-
Senior Cyber Security Protection Specialist
il y a 6 jours
Mons, Wallonie, Belgique NATO Temps pleinJob DescriptionWe are seeking a driven and enthusiastic Senior Cyber Security Defender to join our team. As a key engineer and Subject Matter Expert (SME) for SIEM and Log Collection services, you will be responsible for technical and managerial tasks.Provide advice and technical assistance to stakeholders;Maintain technical expertise, awareness, and...
