Description
Cyber Security System Engineers provide expert support to other profiles (such as security analysts and incident handlers) and carry out fine-tuned configuration and customization of cyber defence components to maximize their efficiency and performance whilst minimizing the amount of false positive detection ratio. They also manage the security of the cyber security components they manage.
Reference Tasks
The following list of tasks applies to this reference profile:
*ITIL process implementation and improvement
*Installs, configures, maintains and upgrades cyber security components
*Monitor managed components and manage incidents and problems (ITIL definitions)
*Tune performances
*Perform day-to-day system management such as
Ouser access management
Opatch management
*Harden system and network components
*Develop, maintain and roll-out reference configurations (ITIL release and deployment management)
*Implement and follow security policies
*Elaborate and maintain system inventory/CMDB, system documentation, operating procedures
*Ensure appropriate testing before applying changes (change evaluation)
*Manage changes through a structured change management process (ITIL Change management)
*Report on service performances and availability, produce dashboards
*Design, develop, install, configure, test, monitor, maintain, troubleshoot and upgrade cyber security infrastructure
*Provide expertise, guidance, recommendations and documented security configurations for implementation of security tools and processes
*Produce detailed engineering specifications
*Evaluate and recommend secure configurations
*Identify security requirements, based upon need or translate high-level security requirements into detailed technical requirements
*Support various technical and non-technical stakeholders to specify and negotiate security requirements
*Interact with network and system engineering teams to effectively communicate and develop security solutions
*Drafts documentation and standard operational procedures to support security systems operations
*Ensures the technical design and contributes to implementation of new components and/or enhancements in coordination with other team members in particular project managers, security architects and engineers.
*Ensure DRP through appropriate back-ups methods to ensure RTO are met.
*Ensure service continuity for the managed components to defined SLAs.
*Ensure capacity planning
*Support security monitoring use-case engineering
*Security events collection technical design. Integration of log sources into a SIEM solution.
*Elaboration and translation of the security monitoring policy into monitoring rules
*Investigate, diagnose and solve system related problems
*Schedule installation work, liaising with all concerned to ensure that installation priorities are met and disruption to the organization is minimized.
*Diagnose and solve problems and faults occurring in the operation of cyber security components
*Comply with organization procedures to ensure integrity of the system
*Recommend resolutions and improvements
*Provide integrated solutions
*Provide consolidate findings on components or processes
*Document cyber defence components configurations
*Ensure that systems meet agreed service levels
*Ensure that communication performance, recovery, and security needs meet agreed service agreement standards
*Contribute to define network design policies, philosophies and criteria
*Craft, fine-tune and validate low level intrusion detection rules for network and host protection
*Development, test and roll-out new releases of Identity and Access Management solutions
Specific Requirements
Minimum amount of years experience:
5 years in Network Security engineering
5 years in System security engineering
5 years in Network security administration
5 years in security testing (functional and non-functional)
5 years in Cryptography
5 years in ISO27001
5 years in ITIL V3 and implementation
5 years in the ability to design, develop, install, configure, test, monitor, maintain, and troubleshoot of cyber security supporting systems and applications
8 years in Network protocols
3 years in Cryptographic solutions
3 years in security protocols
5 years in writing comprehensive documentation
3 years in authentication, authorisation and accounting (including RADIUS, TACACS+, KERBEROS)
3 years in auditing systems and network for configuration weaknesses and vulnerabilities
5 years in Hardening/securing windows Servers and desktops
5 years in Hardening/securing of Unix-like systems
5 years in VMWare, VSPHERE and ESXi technologies
8 years in Windows operating systems
8 years in Linux Servers
5 years in NetAPP storage NAS/SAN
5 years in Firewalls
8 years in System monitoring solutions (Nagios, Centron)
Capital International Staffing Ltd is acting as an Employment Business in relation to this vacancy.