Principal Technician (Cyber Security)

Location: Northwood, United Kingdom.

Period: 836 (start on 26 May 2025).

Deadline: 10 Apr. 2025.

Duties/Roles:

Under the direction of the Section Head MSS Cyberspace Security (NSO OCY 0030), the incumbent will perform duties such as the following:

1. Applies and maintains specific security controls as required by organizational policy and local risk assessments;
2. Supports investigation of suspected attacks and security breaches;
3. Provides detailed and specific advice regarding the application of their specialism to the organization's planning and operations;
4. Installs and administers two Trellix ePolicy (ePO) Orchestrator infrastructure instances in accordance with North Atlantic Treaty Organization (NATO) directives;
5. Manages Trellix Endpoint Security (ENS) components required by NATO Cyber Security Centre (NCSC) policy on local and remote (deployed) devices in two security domains;
6. Liaises with external service lines and stakeholders to apply appropriate Trellix security policies;
7. Manages endpoint security components on disconnected and standalone devices in AOR;
8. Configures Data Loss Prevention (DLP) and File and Removable Media Protection (FRP) components in ePO and on endpoints to allow access to electronic storage media, as required;
9. Documents routine processes in Standard Operating Procedures;
10. Documents and maintains details of ePO configuration;
11. Configures and distributes two-factor authentication devices;
12. Performs trend analysis of routine vulnerability assessments using automated and semi-automated tools, including Nessus Tenable;
13. Provides vulnerability mitigation advice to stakeholders;
14. Supports external service providers in management of local boundary protection and cyber security monitoring infrastructure;
15. Provides CIS Security advice and training, as required;
16. Executes the incident and change management processes in accordance with the Information Technology (IT) Information Library (ITIL) Version 4 framework;
17. Contributes to Asset Configuration Patching and Vulnerability Management activities;
18. Performs other related duties, as required.

Skills, Knowledge, Experience Required:

Mandatory:

1. The candidate must have a currently active NATO SECRET security clearance;
2. Extensive experience and familiarity with NCSC directives for configuring Trellix products including ePO, DLP, FRP, ENS, etc.;
3. Experience supporting deployable/deployed CIS teams and infrastructure in challenging environments and configurations;
4. Familiarity with NATO CIS Security directives;
5. Experience with VMWare virtual hosting infrastructure and applications;
6. Experience using Microsoft update and patch management systems, IT security frameworks and governance models, and Common Vulnerability Scoring System (CVSS) v3.X or later standards;
7. Familiarity with ITIL Version 4 concepts including Configuration Management and Service Asset Management;
8. Prior experience of working in an international environment comprising both military and civilian elements.