Description
ICT Security Operation Centre Officer
Mission Description
The mission shall be comprised of the following practical tasks & deliverables...
1. fulfilling security-related operational tasks (possibly centralizing activities currently done within Operational teams:
o security policies implementation advice (eg hardening & patching,)
o analysis of operational teams requests on Firewall rules and give Go/NoGo following relevant security policies
o Authorization cards management in conjunction with Business (eg managing the roles defined in the Identity Access Management (IAM) platform, providing reports, etc.)
2. screening & analysis of reports related to security
3. Operational role in detecting, reporting, resolving of incidents following a cyber incident notification or following his/her own detection, up to participation in the ICT Crisis Plan should this be activated
4. helping the Security Officer to define reports related to security
Required hard skills
The person apt to perform this should be competent and experienced in the domain of the general
domain of ICT security.
The required hard skills, in descending order of importance, are as follows...
1. A minimum of 4 years' experience in an ICT environment in a responsible role (eg network
engineer or system administrator).
2. Documentation management & reporting definitions
3. ICT vulnerability, anti-malware and security patching subjects.
4. Security within the following ICT domains:-
o Architectural
o Systems: Windows (PC's & Servers), HP Unix & Linux Servers, standalone & virtualised
o Storage: SAN & LAN based storage
o Network: Cisco 2/2
o DB: Oracle & MS SQL
o Applications:
Microsoft Office & typical enterprise applications
Industrial control systems
Microsoft Framework developed (.Net) applications
Required soft skills
The following soft skills are considered descending order of importance
1. Be meticulous in the screening of reports, alert and prompt to report incidents
2. Assertive communication skills in order to involve the impacted business and technical
stakeholders correctly.
3. Ability to react properly under stress (eg following a cyber incident notification or following
their own detection)
Languages
The consultant must be able to communicate, both orally and written either in Dutch and/or
French. English will be used for documentation.
Given more than one proposed candidate with similar level of competences (see above), a
tri-lingual consultant will be preferred over a bi- or mono-lingual consultant.