3949 ICT Security Architect
Contact One Communications, Inc.
Brussels, Belgium
6 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Brussels, Belgium
Tech stack
Artificial Intelligence
Cloud Computing
Computer Security
Databases
Information Management
Log Analysis
Public Key Infrastructure
PRINCE2
Cloud Services
Sherwood Applied Business Security Architecture
Information Technology Security Auditing
Security Information and Event Management
Firewalls (Computer Science)
Information Technology
Splunk
Job description
Scope of Work: Security Architecture and Risk Management:
- Provide security-related advice and guidance to project managers and other project stakeholders regarding ecurity design matters throughout the entire project lifecycle, including security approval-related activities;
- Perform Security Risk Assessments and make recommendations for risk mitigation and acceptance
Security Architect/Approval:
- Review security-related documents or Approval/Accreditation Documentation Sets (ADS) from
- ICT-projects including but not limited to Security Test and Verifications, Security Audit Reports, etc.;
- Draft security recommendations and Security Approval/Accreditation letters
Security Auditing:
- Contribute as necessary to the Security Auditing activities
- Ensure continuous functionality of the SIEM / UEBA systems and that all relevant security logs are properly ingested
- Develop custom SIEM / UEBA queries, reports and dashboards in order to support and enhance Security Auditing activities
Project Team member:
- As required, to develop security-related documentation such as Security Architecture including non-functional requirements, based on project scope
- Make recommendations as necessary on how to improve the existing processes or templates
- Represent the team in internal meetings related to cybersecurity.
Duties and Role:
- Security Architecture Advice and Guidance to Project Managers;
- CIS Security Risk Management;
- Review of ADSs from security architecture perspective;
- Assess ADS requests;
- Contribute to Security Audit activities;
- Contribute to the continuous improvement of internal processes;
- Other security-related duties as required by the NATO supervisor.
Requirements
- The candidate must have a currently active NATO SECRET security clearance
- Minimum 8 years of experience in ICT security-related functions;
- Proven, strong expertise in ICT security architecture and security Accreditation/Approval process;
- Experience in participating in ICT systems and applications implementations.
- Experience in both on-premise and cloud deployments.
- Experience with SIEM and UEBA technologies and tools.
- Ideally, the incumbent should also have experience in working: in an international organization or governmental environment; in a classified environment; within complex multi-stakeholders environments; with log analytics and user behavior monitoring and auditing.
- Technically oriented university degree (information management, electronic engineering, etc.) or equivalent completed advanced vocational training;
- Proven understanding and technical knowledge of the ICT infrastructure & security services (directory services, database, PKI, firewall, etc.), latest software technologies either on-premises or cloud-based;
- Good understanding of project management methodologies and tools (e.g. PRINCE2);
- Good knowledge of security architecture frameworks and methodologies (e.g. SABSA)
- Proven experience in organizing workshops and conducting meetings and presentations;
- Excellent drafting and communication skills;
- Desirable: knowledge and practice of NATO CIS security related directives.
- Desirable: national certification on cybersecurity risk management or security accreditation processes (e.g. Prestataires d'accompagnement et de conseil en sécurité des systèmes d'information (PACS), IT-Grundschutz, ENS)
- Desirable: formal training or certifications on SIEM or UEBA/UAM tools (e.g. Splunk, Everfox suite)
- Desirable: Artificial Intelligence (AI) related security architecture
- Language requirements: Possess the following minimum levels of NATO's official languages (English): V ("Advanced")