Engineer (Vulnerability Mitigation)

Mons, Belgium
negotiable Expired 1 year ago
This job has expired.

JOB DETAIL

NATO offers you more than a job. It gives you a mission: building peace and security for one billion people in Europe and North America. The NATO Communications & Information Agency is leading NATO’s Digital Endeavour. We are NATO’s technology and cyber leaders, helping NATO Nations to communicate and work together in smarter ways. Our work is challenging and meaningful, and you will develop and apply your expertise as part of a dynamic international team of civilian and military professionals.

 

What do we offer?

·       Genuinely meaningful work as part of the most successful alliance in history

·       3 year contract with competitive tax-free salary and household and children’s allowances

·       Privileges for expatriate staff including expatriation and education allowances (where appropriate) and additional home leave

·       Excellent private health insurance scheme

·       Generous annual leave of 30 days plus official holidays

·       Pension Scheme

 

About the job

Based in Mons, Belgium you will join the Agency as we embark on a journey to transform our IT services to support NATO’s Digital Endeavour.

The NATO Cyber Security Centre (NCSC) is responsible for planning and executing all lifecycle management activities for cyber security. In executing this responsibility, NCSC provides specialist cyber security-related services covering the spectrum of scientific, technical, acquisition, operations, maintenance, and sustainment support, throughout the lifecycle of NATO Communications and Information Systems (CIS).

The Cyber Hygiene Branch is responsible to establish and maintain an acceptable level of cyber hygiene for the NATO CIS. The branch is therefore using audit and assessment techniques to measure, monitor and report on the security posture and the level of compliance of NATO’s CIS infrastructure and its supporting equipment and facilities.

You will collect and consolidate the vulnerabilities discovered during the assessment campaigns and execute Vulnerability Management duties such as validating the severity of discovered vulnerabilities, contextualising the vulnerabilities in the light of NATO policies and best practices, determining possible remediation and mitigation measures, defining and assigning priorities, contacting and liaising with relevant system owners, track and trace all remediation actions and report.

For a full list of duties, please review the job description here .

 

About you

We are looking for a talented and knowledgeable Vulnerability Mitigation Engineer with a Bachelor’s degree at a nationally recognized/certified University in a related discipline and 2 years of post-related experience.

A different qualification coupled with particularly relevant experience may also be considered.

You should also have:

·       Extensive knowledge of Cloud System Security Services and Configuration

·       Experience in modern CIS secure deployment and configuration troubleshooting

·       Experience in the Vulnerability Assessment and / or Management area, particularly in the interpretation of the results of CIS Technical Security Vulnerability Assessments

·       Extensive experience in the contextual interpretation of Vulnerability Assessments results

·       Comprehensive understanding of the principles of computer and communications security, networking, and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience

·       Excellent communication skills with respect to briefing/presenting, report writing & mediation

·       Proven ability to write clear and structured technical reports including executive summary, technical findings and remediation plan for several different audiences

·       Proven, professional experience and expert knowledge in at least three of the following:

  • implementation and integration of Information Assurance protective measures
  • security mechanisms related to modern Web Application Security
  • security mechanisms and administration of UNIX/Linux operating systems
  • private and public cloud security
  • light virtualisation/container security concepts
  • enterprise system administration experience of VMWare vSphere environment and architecture, with emphasis on security concepts design and implementation

Knowledge of English, both written and spoken, is essential.

To learn more about NCI Agency and our work, please visit our website.

 

The NATO Communications and Information Agency (NCI Agency) will not accept applications prepared, in whole or in part, by means of generative artificial-intelligence (AI) tools, including and without limitation to chatbots, such as Chat Generative Pre-trained Transformer (Chat GPT), or other language generating tools. All applications prepared, in whole or in part, by means of such generative or creative AI applications may be rejected without further consideration at the sole discretion of the NCI Agency.

Please note that ALL SELECTED CANDIDATES, with the exception of currently employed NATO International Civilians (NIC’s) will be appointed at the first Increment of the indicated NATO Grade, i.e. NATO Grade X, Increment 1.This is the salary referred to in this vacancy notice. Extra increments can only be considered for candidates from another Co-Ordinated Organisation.

Selected candidates who are not nationals of the host country and who have not been continuously resident in the host country for at least one year may be eligible for an expatriate allowance. For the purposes of determining continuous residence, NATO considers mainly the work location at the time recruitment started, independent of whether various ties were kept with the home country. For more information on our allowances click here.

All selected candidates are required to complete a Security Clearance, Medical Clearance and Pre-employment Screening process before joining the NCI Agency. This process will require time, so please keep in mind that you will not be able to start working with us right away.

 

Mons, Belgium

location

This job has expired.