Threat Hunter - Mons, België - Enterpryze Consulting Ltd.

Enterpryze Consulting Ltd.
Enterpryze Consulting Ltd.
Geverifieerd bedrijf
Mons, België

1 maand geleden

Sophie Dubois

Geplaatst door:

Sophie Dubois

beBee Recruiter
Beschrijving
**Threat Hunter - Cyber Security Data

-
Working Location:Mons, Belgium**-
Security Clearance: NATO Secret**-
Language:High proficiency level in English language

**EXPERIENCE AND EDUCATION:
**Essential Qualifications/Experience: - 1+ year of experience using/administering Splunk Enterprise

  • 2+ years of extensive practical experience as a tool engineer/system administrator in large enterprise environments (deployment, installation, configuration and maintenance), especially Linux environments
  • Practical skills in writing Bash, Python or Ansible scripts to support repetitive tasks automation.
  • Solid understanding of regular expressions.
  • Familiarity with Sysmon and its concepts.
  • Familiarity with the concepts of Tactics, Techniques, Procedures (from an ATT&CK point of view).
  • Ability to develop clear and concise technical documentation, including procedures.

Desirable Qualifications/Experience:


  • Practical experience with Sysmon: deployment, installation, configuration and maintenance
  • Solid understanding of MITRE ATT&CK framework
  • Practical experience (as system administrator) with Splunk Enterprise and Splunk Enterprise Security including deployment and configuration of Splunk Universal Forwarders
  • Experience in onboarding and parsing new data through Splunk Universal Forwarders and Heavy Forwarders
  • Experience with version control systems, preferably GITHandson experience with Ansible as an automation technology
  • A solid understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
  • Prior experience as a user of SIEM and Log aggregation systems
  • ITIL Service Management certifications
  • Content management experience in Splunk, especially Enterprise Security and Advanced Search and Reporting
  • Handson experience with network infrastructure and virtualised environments (preferably VMWare)
  • Industry leading certification in the area of Cyber Security such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC and CFCE
  • Previous experience working for Cyber Security related organisations (CERTs, security offices)
  • Previous experience working in an international environment comprising both military and civilian elements

DUTIES/ROLE:


  • Provide advice and technical assistance to other stakeholders, maintain technical expertise, awareness, and developments in related new technologies, and provide technical contributions to any projects related to the data security systems
  • Be responsible for management and further development of the data security systems
  • Following ITIL standards, provide support to Operations and Service Delivery management covering all stages of the data security systems lifecycle (e.g. Service Design, Transition, Operations, Change Management and Continual Service Improvement)
  • Ensure that all system components are continuously monitored and take appropriate technical and nontechnical actions for solving detected issues
  • Ensure that data security systems operate within any KPI's, as defined in Service Level Agreements with NCSC customers
  • Support integration with external tools and any associated activities
  • Proactively identify and propose system improvements to ensure an uptodate and stable environment. Justify business needs, prepare documentation and implementation plan for the Change Management Board. Implement the approved changes following coordination with other stakeholders
  • Coordinate with service delivery managers, end users and other stakeholders in support of related services; communicate with other NATO entities as well as industry partners where required
  • Develop and maintain documentation guidelines, standard operating procedures, system and service design documents and other relevant documentation that support management of the data security systems
  • Create technical and/or executive level reports as required; organise and deliver presentations and briefings for various audience up to NATO executive level
Meer banen van Enterpryze Consulting Ltd.
Bekijk alle vacatures van Enterpryze Consulting Ltd.