Staff Assistant (CIS Security)

NATO•Norfolk, NY

About The Position

ACT contributes to preserving the peace, security and territorial integrity of Alliance member states by leading, at Strategic Command level, Warfare Development required to enhance NATO’s posture, military structures, forces, capabilities and doctrines. The Resources and Management (RM) Directorate acts on behalf of SACT on all internal management and resource-related issues. It monitors the coherency of ACT plans to ensure that ACT remains an effective and efficient organization and improves continuously. The ACT Office of Security has staff responsibility to execute, provide and coordinate security services to the headquarters, its subordinate commands, and to the NATO community at large, operating at all levels of command to ensure the security of its personnel, assets, and resources. The Principal Assistant (CIS Security) within the ACT Office of Security is responsible for the security testing, evaluation, and verification of HQ SACT CIS implementations. The post-holder supports the security risk management processes mandatory within NATO and supports security governance of CIS operations.

Requirements

Higher Secondary education and intermediate vocational training in information security, computer science or related discipline which might lead to a formal qualification with 2 years experience, or Secondary education and completed advanced vocational training in that discipline leading to a professional qualification or professional accreditation with 4 years post related experience.
At least three years’ experience in a CIS environment associated with the analysis, design, development or installation of CIS, two years of which were associated with the administration of Information systems in a secure environment.
Good knowledge of CIS operations and the management Local Area Networks including Network protection (Routers, Firewalls, IDS/IPS), Microsoft and Linux-based operating systems, Antimalware protection Services and Security designs and configurations.
Excellent knowledge in CIS logging, monitoring and event management.
Previous experience of providing CIS Support within a large organization.
Strong communication skills.
English – SLP 3322 - (Listening, Speaking, Reading and Writing)

Nice To Haves

Knowledge in the application of security to CIS to medium and large CIS.
Experience as a system administrator and cybersecurity administrator.
Experience in the management of Data Loss Prevention tools.
Practical knowledge of military organization missions, functions, and operations.
ITIL Practitioner provided by Industry.
Methodology for Information Systems Risk Analysis and Management (MARGERIT) – provided by CNI.ES.
PILAR Risk Analysis and Management Tool - provided by ES-CYBER.com
French - 2211-(Listening, Speaking, Reading and Writing)
At least one active following certification: System Security Certified Practitioner (SSCP). Certified Information Security Manager (CISM). GIAC Security Essentials (GSEC). CompTIA Security +

Responsibilities

Advising and supporting on CIS Security requirements all ACT driven CIS projects lead by CAPDEV Cyber, CAPDEV CIS, ACT Innovation-Hub or any other ACT lead CIS project.
Advising and Supporting CIS Security during the deployment and implementation of all CIS within HQ ACT to include Personal Security, Physical Security and Emission Security and Industrial Security in relation to CIS Security.
Advising and supporting on CIS Security requirements all ACT driven CIS projects lead by CAPDEV Cyber, CAPDEV CIS, ACT Innovation-Hub or any other ACT lead CIS project.
Advising and Supporting the HQ ACT Secondary Security Officer, and the CIS Operating Authority on all CIS Security matters relating to HQ SACT.
Support HQ SACT Primary and secondary CIS Security Officers at the different boards and meeting organize by NCIA CSU Norfolk to include the Change Advisory Board, the Change Configuration Board, any project sync boards.
Supporting ACT Security Policy Staff Officer in the development of the local HQ SACT CIS Security Directive and guidelines.
Managing, operating and monitoring the HQ SACT operated CIS and ensure their adequate security posture.
Assisting in the monitoring, asset management, configuration, patching and vulnerability management of the HQ SACT managed CIS.
Tracking all confirmed security violations and advising on possible subsequent mitigation and remediation measures.
Analyzing historical trends in security violations and proposing corrective measures.
Supporting and managing HQ SACT Staff annual security training requirements.
Supporting the Security awareness programme for HQ SACT for all cybersecurity matters.
Supporting CIS Security support for all HQ SACT Exercises, Experimentation and wargaming taking place within HQ SACT.
Supporting and Conducting local Security Inspections of HQSACT CIS posture and cyber hygiene.
Supporting and participating in investigations of CIS security breaches within HQ SACT Area of Responsibility.
Participating in investigations of other CIS security breaches as required.
Undertaking any other tasking as directed by line management.