Cyber Security Architect

Spektrum supports apex purchasers (NATO, UN, EU and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Background

NATO Support and Procurement Agency (NSPA) operates a large Local Area Network (LAN). NSPA also provides services to both internal users and external customers from systems hosted in several data centres. To deliver a wide range of Computer Information System (CIS) services, the whole ICT infrastructure is stretched across the LAN and numerous DMZs, requiring security protection and defence in depth with several layers of cyber protection

Project Duration

3 years

Duties and Responsibilities

• Design, document and provide assurance that the NSPA cyber security architecture is secured.
• Assess new cyber security products or technologies. This will involve researching the product, liaising with the manufacturer, arranging for a lab trial, conducting a test phase and then writing a report and making recommendations to NSPA.
• Evaluate vulnerabilities and design mitigations.
• Provide Cyber Security advisory and recommendations.

Skills and Experience

• Proven experience of at least 10 years - on medium/large projects – on complex and reliable security architecture.
• Proven experience of at least 3 years in a NATO environment.
• Proven experience in leading a full NATO system accreditation
  • Design, System Specific Security Requirement Statement (SSRS)
  • Security Operating Procedures (SecOps)
  • Concept of Operations (Con Ops).
• Proven experience and skills in the following areas:
  • Next Generation Firewalls
  • Web Application Firewalls
  • E-mail gateways
  • Intrusion Prevention System
  • Vulnerability management
  • Mobile Device Management
  • Apple infrastructure and iOS management
  • Web Proxies
  • Reverse Proxies
  • Anti-malware and endpoint protection technologies
  • Public Key Infrastructures (PKIs) and Security Incident
  • Multi-Factor authentication
  • Privileged Access Management
  • Event Management (SIEM) systems.
• Proven knowledge of:
  • Cloud Architecture and Security
  • Microsoft 365 security
  • Operating System (Windows and Linux) security and of Active Directory security
  • Networking protocols
  • Application Security
• Offensive security tactics, techniques, tools and procedures:
  • Security incident/intrusion handling
  • Project management
• Experience in triage of security alerts.
• Proficiency in English, written and oral, equivalent to CEFR B2 or higher
• Ability to explain issues at different levels of the hierarchy and in particular to management
• Ability to write clear and concise reports and technical documentation with proper justification

Working Location

• Main working location: Capellen, Luxembourg (NSPA HQ)
  • Some projects may require business travel to other sites
  • Some remote/hybrid work may be required

Working Hours

• Monday to Thursday:
  • Arrival 06:00 to 09:00
  • Lunch break Minimum 30 minutes 11:45 – 13:45
  • Departure 16:15 to 20:00
• Friday
  • Arrival 6:00 to 9:00
  • Departure 12:15 to 17:00
• Public Holiday of Luxenberg will be applicable

Security Clearance

• Valid NATO SECRET Personal Security Clearance