Description
Network Engineer-SC Cleared - Belgium-Long Term - Eu400 per day
Position Purpose:
The System Engineer will require experienced IT security professionals to be part of this leading edge capability for Cyber Defence. Working as part of an incident management team you would be part of the operational support at the sharp end of the Computer Incident Response Centre (NCIRC). The Network Engineer will be the infrastructure support for the NCIRC Full Operating Capability (FOC).
Responsibilities/Duties/Functions/Tasks:
Coordinate or participate in individual or team projects
Involved in the investigation of infrastructure related events
Monitor the network health, proactively and reactively providing hands on hardware and applications support for the NCIRC FOC infrastructure
Maintain keen understanding of evolving networking technology, infrastructure and applications developments in the virtual machine environment including security aspects
Participate in knowledge sharing with security analysts and develop solutions efficiently
Respond to service request to carry our system configuration tasks, applications upgrades/releases and fault fixes within the service level agreements. Working within the main facility but also supporting remote sites as required, in some cases visiting the sites to provide support
Working with the operation and maintenance team to investigate problems and develop solutions
Write technical articles for internal knowledge base
Other task as required
Minimum Qualifications:
Education:
Degree or years equivalent in an IT, Science, or Mathematics related Field
Arcsight or Source Fire Certified OEM Training
Certifications:
SANS GIAC Certified Incident Handler (GCIH) or equivalent
Security Clearance:
Active Secret or higher
Experience:
2 + years' experience in Cyber Security, incident detection, network and systems security and experience or qualifications in network and systems monitoring and support such as Cisco, Microsoft certification or equivalent
2+ years' experience of maintaining a secure network through configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, EPO
Knowledge of SNORT
2+ years experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours and in depth experience of other common devices, such as Routers, Switches, hubs and Troubleshooting Windows environments and Virtual Machine environments
Preferred Qualifications:
Experience of using SIEM tools such as ArcSight, Sourcefire, Symantec Endpoint
Software engineering, programming or Scripting knowledge. Java, .Net.
An understanding of Information Security; relating to the Confidentiality, Integrity and availability of information
Special Position Requirements:
Motivated, self-managed individual who is willing to help design and adapt a constantly evolving service
Someone who can demonstrate security domain knowledge and liaise professionally with peers and stakeholders, even under pressure
Mentoring or coaching members of a team
Must be capable of communicating clearly with team members and other analysts
Proactive customer focused response on request
Understanding of Information Security; relating to the Confidentiality, Integrity and availability of information
Additional Information:
Required to accommodate flexible working hours including the need to be on-call during out-of-hours periods
Location: Mons, Belgium
MUST HAVE CURRENT SC CLEARANCE