je.st
news
SOC Analyst
2019-02-13 17:30:25| Space-careers.com Jobs RSS
Position Reference 017 You will have the opportunity of providing the first line of defence in NATOs 247365 global Cyber Security mission, working within a truly unique and rewarding team of Military and Civilian Cyber Security specialists. You will be based at the NATO Communications and Information Agency NCIA Cyber Security Technical Centre located at NATOs Supreme Allied Headquarters SHAPE in Mons Belgium. The NATO Computer Incident Response Centre NCIRC is one of the largest fully integrated global Cyber Defence capabilities in the world. This capability requires a combined international team of 250 NATO and Industry analysts and engineers, to operate and maintain the wide range of Cyber Security services and the complex infrastructure on which they run, installed at over 100 sites in all 29 NATO member countries. You will be required to use your experience in the analysis and handling of security events to carry out the daytoday identification of security related events and will need to draw on your demonstrable experience in the analysis and handling of security events. Tasks and Activities The scope of work will include Work within a Leonardo NATO matrix managed Cyber Security Incident Management team Appropriately leverage the comprehensive extended toolset e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc for enhancing investigations Propose possible optimisations and enhancement which help to both maintain and improve NATOs Cyber Security posture Provide Subject Matter Expertise supporting the endtoend Incident Handling process Monitor system status outside of working hours understanding how this relates to Security posture and escalating technical issues to duty staff Skills and Experience The following skills and experience are mandatory You are able to work to management direction, independently andor as an active participating member of a multinational and multiskilled team You are able to selfmanage routine tasks completing then reliably to the required format, standards and schedule You are able to apply a proactive, logical and methodical approach to problem solving balancing expertise, initiative and collaboration to achieve the most efficient resolution of issues You are able to understand and ensure that all work is carried out within mandatory constraints such as local Standard Operating Procedures SOPs or other applicable local processes You are able to remain flexible and adaptable to changing operational status and emerging priorities You hold or are able to obtain, UK NATO Security Clearance UK SCNS UK DVCTS You understand the constraints of working in secure environments with protectively marked media You hold a valid passport from a NATO member country httpswww.nato.intcpsennatohqtopics52044.htm You are eligible and able to undertake business travel throughout Europe You are able to represent Leonardo in an International mixed Civilian and Military environment You are able communicate effectively in English though not necessarily as a first language You have a high level of experience in a minimum of one of the following key cyber security area, along with a working level experience across a broad selection of other technologies. E.g. NIPS, NIDS, HIDS, Computer Forensics tools, Vulnerability Assessment tools, Firewalls, CIRT and CERT You have experience in security event management and analysis, especially configuration, operation, troubleshooting, and management of ArcSight products You have experience in management, use and analysis of events from Network Based Intrusion Detection Systems NIDS and Host Based Intrusion Detection Systems HIDS You have experience in deployment, configuration and maintenance of network security appliances and networking devices and associated management software You have a good knowledge in the use of a variety of Security Event generating sources e.g. Firewalls, IDS, Routers, Security Appliances You have experience with network, system and application level troubleshooting techniques Computer incident response centre CIRT, computer emergency response team CERT You have a good knowledge in computer forensics tools stand alone and online and network You have a good knowledge in computer security tools Vulnerability Assessment, Antivirus, Protocol Analysis, AntiVirus, Protocol Analysis, AntiSpyware, etc You have experience in secure web design and development You have experience in military communication systems and networks You are able to analyse diverse sources of information You are able to break information into component parts, patterns and relationships You are able to probe for further information or greater understanding of a problem You are able to make rational judgement from the available information and analysis You are able to produce workable solutions to a range of problems and demonstrate an understanding of how one issue may be a part of a much larger system. The following skills would be highly desirable You have one of more professional SANS e.g. GSEC,GCIA or CISSP certifications How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 01032019. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: analyst
soc
Category:Transportation and Logistics