Cyber Security Technician

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting 

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

• Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
• Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
• Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
• Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
• Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role ID – C004611

Role Duties and Responsibilities

• Applies and maintains specific security measures as required by organisational policy and local risk assessments.
• Contributes to the identification of risks that arise from potential technical solution architectures.
• Suggests alternate solutions or countermeasures to mitigate risks.
• Defines secure systems configurations in compliance with intended architectures.
• Supports investigation of suspected attacks and security breaches.
• Follows standard approaches for the technical assessment of information systems against information assurance policies and business objectives.
• Makes routine accreditation decisions.
• Recognises decisions that are beyond their scope and responsibility level and escalates according.
• Reviews and performs risk assessments and risk treatment plans.
• Identifies typical risk indicators and explains prevention measures.
• Maintains integrity of records to support and justify decisions.
• Carries out routine operational procedures, including the execution of specified automation tools/scripts.
• Contributes to maintenance and installation.
• Monitors and reports on infrastructure performance to enable service delivery.
• Resolves issues or refers to others for assistance.
• Undertakes low-complexity routine vulnerability assessments using automated and semi-automated tools.
• Escalates issues where appropriate.
• Contributes to documenting the scope and evaluating the results of vulnerability assessments.
• Works with access controls for firewalls and endpoint security solutions.
• Assists in the operation of day-to-day administrative transactions and systems.
• Performs periodic system backups and produces standard monitoring reports.
• Coordinates user access and maintains security checklists and authorization tables.
• Tests the effectiveness of new or revised information security procedures and tools.
• Performs information gathering and research on key elements of IT security policies.
• Assists senior colleagues in identifying and analysing critical issues in IT security policies.
• Executes IT security policies and standards within a specific region in organization.
• Conducts performance reviews on implementation of IT security policies.
• Generates status reports for senior management to ensure the implementation of IT security policies.

 Essential Skills, Experience and Certifications

• At least 4 years practical experience of implementation and maintenance of cyber security systems within a large organization.
• Working experience administrating and monitoring cyber security software.
• Good understanding of cyber security systems and the ability to work independently to solve problems.
• Working experience troubleshooting technical issues and providing technical support to end-users.

 Desirable Skills, Experience and Certifications

• Security Professional certification (CEH, GIAC, ISC2, or other relevant certification)

 Education

• Secondary educational qualification with 4 years post-related experience.

 Language Proficiency

• Language: A thorough knowledge of English, both written and spoken, is essential.

 Working Location

• Norfolk, Virginia, US

Working Policy

• On-site

Travel

• Some travel to other NATO sites may be required

Security Clearance

• Valid National or NATO Secret personal security clearance