Cyber Security Events Analyst

  • Sharebar

Sapienza is looking to recruit a Cyber Security Events Analyst to work with NCIA in Mons, Belgium.

  • Provide technical support and assistance to NATO CIS Operating Authorities
  • Analyse and interpret advisories from national and non-government CERTs for their relevance to NATO CIS and development of associated signatures and event correlation
  • Assist in initial selection and assessment of security tools relating to Event Analysis Cell responsibilities
  • Manage 24/7 event analysis activities
  • Perform technical coordination as required with national, non-governmental and NATO CIS authorities
  • Provide, as requested, technical support to forensic investigation
  • Develop customised sensor and correlation filters and signatures to address NATO-specific threats and vulnerabilities
  • Develop signature database to record all authorised event filters, customised signatures and sensor configurations
  • Provide technical direction to cell head incident-related research conducted by the Cell
  • Review and refine event analysis processes in order to optimise sensor configuration and correlation capabilities
  • Conduct and direct technical aspects of trend and threat analysis in order to optimise NCIRC sensors and to propose modifications to audit policies to NATO security authorities
  • Prepares and delivers reports and presentations to NATO and national security authorities, INFOSEC communities and CIS operating authorities on all aspects of event analysis and interpretation
  • Co-ordinate assistance to TIER 3 as required in respect to event analysis and interpretation
  • Develop of standard operating procedures covering all aspects of event analysis
Ideal Candidate: 
  • Degree in IT or CIS security related discipline
  • Member of recognized professional body or institution
  • Relevant certifications, such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or GIAC Security
  • Experience in interpretation and mitigation of CIS security vulnerabilities
  • Experience in Intrusion Detection and Incident Handling
  • Comprehensive knowledge of principles of computer and communications security, networking and vulnerabilities of modern operating systems and applications
  • Proficiency with Network (TCP/IP) Engineering and secure network design
  • Proficiency with Intrusion/Incident Detection and Handling
  • Proficiency with Security Assessment
  • Practical experience in system administration and network administration
  • Experience in analysis of risk and in implementation and integration of cyber security protective measures
  • Experience in office communication and information systems
  • Strong preference given to someone with knowledge and experience of NATO Consultation, Command and Control objectives and goals as well as operational requirements in support of NATO Command and Control Information Systems, particularly as they relate to security
  • Must be able to work without direct supervision and keep high level of performance even under pressure
  • Must possesses very good communication skills to motivate support staff in the team and convince others in meetings and during incident response activities
  • Must be able to plan and organise effective and efficient course of action including thorough analysis of complex information and allocating resources according to priorities
  • May be required to work outside normal working hours in event of significant or prolonged security incidents
  • Fluent in English
  • Candidates must be eligible to work in the EU
  • Candidates must be in possession of a NATO Secret Security Clearance!
  • Sharebar