Description
Information System Security Tools Specialist - SIEM - ArcSight, LogLogic, SourceFire - NATO - Belgium. My client is looking for an Information System Security Tools Specialist to be part of a leading edge capability for Cyber Defence. Working as a member of an incident management team you would be part of the operational support.
You will be responsible for working with other analysts and specialists to help tune the security tools for optimum performance. You will ensure that all special systems and applications such as event correlation, network discovery, network traffic pattern/flow analysis, mail content checking, extrusion detection and on-line computer forensics tools are installed, configured and operational. You may become involved in the investigation of security events. This role will include configuration and administration of a range of cyber defence specialist tools. These tools will include, but not limited to Intrusion Protection and Prevention, Vulnerability Analysis and Assessment, Security Incident Management, Computer Forensics, Packet Capture, Log collection and analysis.
Education
Degree (or 6 years' experience equivalent) in an IT, Science, or Mathematics related Field
Certifications Industry standard certifications are highly desirable such as:
SANS GIAC Certified Incident Handler (GCIH) or equivalent
ArcSight or SourceFire Certified OEM Training
ITIL v3 Foundation Experience
2+ years' experience in Cyber Security, network and systems security tool
configuration
2+ years' experience in configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, EPO
2+ years' experience using SIEM tools such as ArcSight, LogLogic, SourceFire,
Symantec Endpoint Knowledge of SNORT
NATO clearance is highly desirable however any National security clearance is acceptable as long as it is from a NATO country.
Alps IT. is acting as an Employment Business in relation to this vacancy.