C004174 Principal Technician (Cyber Security)

Job Description

Under the direction of the Section Head MSS Cyberspace Security (NSO OCY 0030), the incumbent will perform duties such as the following:

1. Applies and maintains specific security controls as required by organizational policy and local risk assessments.
2. Supports investigation of suspected attacks and security breaches.
3. Provides detailed and specific advice regarding the application of their specialism to the organization's planning and operations.
4. Installs and administers two Trellix ePolicy (ePO) Orchestrator infrastructure instances in accordance with North Atlantic Treaty Organization (NATO) directives.
5. Manages Trellix Endpoint Security (ENS) components required by NATO Cyber Security Centre (NCSC) policy on local and remote (deployed) devices in two security domains.
6. Liaises with external service lines and stakeholders to apply appropriate Trellix security policies.
7. Manages endpoint security components on disconnected and standalone devices in AOR.
8. Configures Data Loss Prevention (DLP) and File and Removable Media Protection (FRP) components in ePO and on endpoints to allow access to electronic storage media, as required.
9. Documents routine processes in Standard Operating Procedures.
10. Documents and maintains details of ePO configuration.
11. Configures and distributes two-factor authentication devices.
12. Performs trend analysis of routine vulnerability assessments using automated and semi-automated tools, including Nessus Tenable.
13. Provides vulnerability mitigation advice to stakeholders.
14. Supports external service providers in management of local boundary protection and cyber security monitoring infrastructure.
15. Provides CIS Security advice and training, as required.
16. Executes the incident and change management processes in accordance with the Information Technology (IT) Information Library (ITIL) Version 4 framework.
17. Contributes to Asset Configuration Patching and Vulnerability Management activities.
18. Performs other related duties, as required.

Requirements

1. Extensive experience and familiarity with NCSC directives for configuring Trellix products including ePO, DLP, FRP, ENS, etc.
2. Experience supporting deployable/deployed CIS teams and infrastructure in challenging environments and configurations.
3. Familiarity with NATO CIS Security directive.
4. Experience with VMWare virtual hosting infrastructure and applications.
5. Experience using Microsoft update and patch management systems, IT security frameworks and governance models, and Common Vulnerability Scoring System (CVSS) v3.X or later standards.
6. Familiarity with ITIL Version 4 concepts including Configuration Management and Service Asset Management.
7. Prior experience of working in an international environment comprising both military and civilian elements.