First Line Security Event Analyst - Mons, België - Vector Synergy
Beschrijving
Location:
Mons, Belgium
Security Clearance:
NATO Secret
Reference No:
C001782 / Mons
Skills, knowledge, experience required:
- The lack of a degree may be compensated by at least 3 years of relevant experience in field of cyber security analysis;
- Comprehensive knowledge of the principles of computer and communications security including knowledge of Transmission Control Protocol (TCP)/Internet Protocol (IP) networking, MS Windows and Linux operating systems;
- Broad understanding of common network security threats and mitigation techniques;
- Experience in the following:
- Security Information and Event Management products (SIEM) e.g. ArcSight, Splunk;
- Analysis of Network Based Intrusion Detection Systems (NIDS) events
- Log analysis from a variety of sources (e.g. Firewalls, Proxies, Routers, Domain Name System (DNS) and other security appliances);
- Network traffic capture analysis using Wireshark;
- Logical approach to analysis and ability to perform structured security investigations using large, complex data sets;
- Good written and spoken communication skills;
- Ability to work independently and as part of a team.
Desirable:
- Skill Industry leading certification in the area of cyber security, such as:
- GIAC Certified Intrusion Analyst (GCIA);
- GIAC Network Forensic Analyst (GNFA);
- GIAC Certified Incident Handler (GCIH);
- Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT);
- Proficiency in Intrusion/Incident Detection and Handling;
- Experience in the following areas:
- Full Packet Capture systems
- e.g. Niksun, RSA/NetWitness;
- Host Based Intrusion Detection Systems (HIDS);
- Computer security tools (Vulnerability Assessment, Antivirus, Protocol Analysis, Anti-Spyware, etc.);
- Computer forensics tools (stand alone, online and network);
- Military communication systems and networks;
Duties/role:
- Performing initial analysis of logs and network traffic, determining alert severity and escalating when required;
- Collating information and presenting findings in a clear, structured format, providing remediation recommendations and first line response where applicable;
- Conducting research and assessments of security events within NATO Cyber Security Centre (NCSC) team;
- Providing analysis of firewall, IDS, antivirus and other network sensor produced events and presenting findings;
- Appropriately leveraging the comprehensive extended toolset (e.g. Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) for enhancing investigations;
- Supporting the endtoend Incident Handling process;
- Proposing optimizations and enhancements which help to both maintain and improve NATO's Cyber Security posture.
Marcelińska 90, Poznań, NIP PL , REGON , KRS:
Rejestr Przedsiębiorców KRS prowadzony przez Sąd Rejonowy Poznań - Nowe Miasto i Wilda w Poznaniu, VIII Wydział Gospodarczy KRS,
Meer banen van Vector Synergy
-
System Architect
Brussels, België - 2 weken geleden
-
Noo/bpem/spcm IT Business Analyst
Brussels, België - 4 dagen geleden
-
Senior Incident Detection Analyst
Mons, België - 3 weken geleden
-
Senior Business Analyst
Brussels, België - 2 dagen geleden
-
Technical Writer
Braine-l'Alleud, België - 3 dagen geleden
-
IT Support
Mons, België - 3 weken geleden