First Line Security Event Analyst - Mons, België - Vector Synergy

Vector Synergy

Geverifieerd bedrijf

Mons, België

2 weken geleden

Geplaatst door:

Sophie Dubois

beBee Recruiter

Beschrijving

Location:

Mons, Belgium

Security Clearance:

NATO Secret

Reference No:

C001782 / Mons

Skills, knowledge, experience required:

The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis;
Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission Control Protocol (TCP)/Internet Protocol (IP) networking, MS Windows and Linux operating systems;
Broad understanding of common network security threats and mitigation techniques;
Experience in the following:
Security Information and Event Management products (SIEM) e.g. ArcSight, Splunk;
Analysis of Network Based Intrusion Detection Systems (NIDS) events

- e.g. SourceFire, Palo Alto Network Threat Prevention;

Log analysis from a variety of sources (e.g. Firewalls, Proxies, Routers, Domain Name System (DNS) and other security appliances);
Network traffic capture analysis using Wireshark;
Logical approach to analysis and ability to perform structured security investigations using large, complex data sets;
Good written and spoken communication skills;
Ability to work independently and as part of a team.

Desirable:

Skill Industry leading certification in the area of cyber security, such as:
GIAC Certified Intrusion Analyst (GCIA);
GIAC Network Forensic Analyst (GNFA);
GIAC Certified Incident Handler (GCIH);
Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT);
Proficiency in Intrusion/Incident Detection and Handling;
Experience in the following areas:
Full Packet Capture systems
e.g. Niksun, RSA/NetWitness;
Host Based Intrusion Detection Systems (HIDS);
Computer security tools (Vulnerability Assessment, Antivirus, Protocol Analysis, Anti-Spyware, etc.);
Computer forensics tools (stand alone, online and network);
Military communication systems and networks;

Duties/role:

Performing initial analysis of logs and network traffic, determining alert severity and escalating when required;
Collating information and presenting findings in a clear, structured format, providing remediation recommendations and first line response where applicable;
Conducting research and assessments of security events within NATO Cyber Security Centre (NCSC) team;
Providing analysis of firewall, IDS, antivirus and other network sensor produced events and presenting findings;
Appropriately leveraging the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) for enhancing investigations;
Supporting the endtoend Incident Handling process;
Proposing optimizations and enhancements which help to both maintain and improve NATO's Cyber Security posture.

VECTOR SYNERGY sp. z o.o., ul.

Marcelińska 90, Poznań, NIP PL , REGON , KRS:

Rejestr Przedsiębiorców KRS prowadzony przez Sąd Rejonowy Poznań - Nowe Miasto i Wilda w Poznaniu, VIII Wydział Gospodarczy KRS,