[2704] ENGINEER (INFORMATION SECURITY/ASSURANCE

Clearance Required: Cosmic Top Secret Clearance

• -A minimum requirement of a Bachelor's degree at a nationally recognised/certified University in a related discipline and 2 years post-related experience;
• Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidate's particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the post;
• In depth technical knowledge of Network, Servers and PC environments;
• Relevant experience and sound knowledge of Computer and Networks Security principles and procedures with good knowledge of TCP/IP network protocols and services;
• Strong experience of Unix/Linux and Microsoft Operating system administration;
• Proven capability of converting evolving operational requirements into Information Systems requirements;
• Proven experience in:
• Providing advice and guidance on security strategies to manage identified risks;
• Providing advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines;
• Contributing to development of information security policy, standards and guidelines;
• Interpreting information assurance and security policies and applying these in order to manage risks;
• Maintaining secure configuration, applying and maintaining tools, techniques and processes to identify, track, log and maintain accurate, complete and current information;
• Courses:
• 0731
• Cyber Defence NATO COMPUSEC Level 1;
• 0732
• Cyber Defence NATO COMPUSEC Level 2;
• 0280
• Cyber Defence NATO CIS Security Officer (INFOSEC version 2

• . Experience and Education:
• Prior experience of working in an international environment comprising both military and civilian elements;
• Knowledge of NATO responsibilities and organization, ding ACO and ACT;
• Knowledge of policy, procedures, and organisation of NATO CIS;
• Working knowledge of ITIL processes and procedures;
• Experience in working in a service desk environment;
• Courses:
• CISSP;
• 0730
• NATO Cyber Defence Advisor;
• Vulnerability Assessment Training.

ACTIVITIES

• -Provide technical expertise and support to the assigned AOR Cyber Defence working group;
• Provide Level 1 cyber security expertise and lifecycle support as required;
• Identifying system vulnerabilities and possible threats and applying the necessary safeguards (both technical and administrative) to minimize those vulnerabilities and defend against potential attacks;
• Developing and administering the site security program and the implementation and monitoring of NCI Agency Security policies and procedures;
• Provide neering and implementation guidance as required;
• Investigate, define and resolve complex technical issues;
• Plan and execute Site Surveys within AOR;
• Provide, as requested, digital forensic support to security investigations in line with the assigned AOR SLA and as directed by NCSC;
• Developing, implementing and managing security awareness and training for site users;
• Providing advice and assistance to various personnel (technical and non-technical) in identifying security requirements for the different automated systems including security considerations in application development, implementation, operation and maintenance;
• Support assigned AOR accreditation requirements in direct coordination with the NCSC;
• Performing risk assessments and identifying potential security risks that may arise;
• Report security issues and concerns to management staff;
• Investigating security incidents and taking appropriate actions;
• Maintaining close liaison with NCI Agency SLs on all Cyber Security aspects;
• Evaluating and recommending security products and solutions;
• Perform the role of COMSEC Officer;
• Serve as the integration point of contact for implementation of cyber security new capability fielding initiatives;
• Provide neering support and assistance for NCIRC-related activities and problems affecting change, operation and maintenance of NATO networks.
• Responsible for the crypto key-management within policy guidelines if required;
• Deputize for higher grade staff;
• Performs other duties as may be required.

Contract
Italy
Negotiable
GPC002704
Jamie Myers
jamie@gpc.work