Deadline Date: Monday 7 October 2024
Requirement: Cyber Security Technical Support
Location: Mons, BE
Full Time On-Site: Yes
Time On-Site: 100%
Total Scope of the request (hours): 125
Required Start Date: 2 December 2024
End Contract Date: 31 December 2024
Required Security Clearance: NATO SECRET
Duties and Role:
Under the direction of the assigned Resource manager, the incumbent will perform duties such as the following:
1. Install, configure and maintain the day-to-day NATO wide PKI systems and components;
2. Install, configure and maintain NATO PKI (NPKI) virtualized infrastructure;
3. Install, configure and maintain NPKI networking components;
4. Install, configure and maintain NPKI hardware infrastructure;
5. Install, configure and maintain NPKI LDAP directory service and support HTTP service;
6. Install, configure and maintain WNES- auto enrolment service, CSR SCEP; Enrolment over Secure Transport (EST); Entrust Administration Services components especially in context of ITM and NPKI-Mitigation projects new services development and deployment;
7. Responsible for Enterprise Mobile Mobility configuration, integration, maintenance;
8. Responsible for LDAP directory service configuration and maintenance;
9. Responsible for Online Certificate Status Protocol (OCSP) and Time Stamp management;
10. Responsible for Database maintenance, dedicated for NPKI;
11. Responsible for Card Management System deployment, integration and day-to-day management;
12. Responsible for Hardware Security Module (HSM) firmware upgrade and management;
13. Responsible for the creation of PKI related guidance;
14. Certificate Authority Log analysis, (Troubleshoot the system ALARM/ERRORS and monitor user activity);
15. Support Smart Card enrolment and certificate creation process;
16. Maintain the day-to-day operations /management /backup/restore of the PKI systems;
17. Provide technical support and assistance to ITM Operating Authorities and NPKI-Mitigation project team;
18. Provide 2nd and 3rd level technical support of CIS services to the NPKI customers;
19. Designing of new PKI components;
20. Responsible for the creation and maintenance of Standard Operating Procedures within the NPKI as part of modifications or additions to current capabilities;
21. Documenting of all new PKI services;
22. Installation and maintenance of NPKI components;
23. Be flexible to work outside normal office hours in response to crises, operational requirements;
Requirements
Skill, Knowledge & Experience:
24. The candidate must have a currently active NATO SECRET security clearance
25. A university degree in a relevant discipline and 3 years of specific experience
26. Extensive knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects.
27. 3 years extensive experience with PKI System development, design and management.
28. Extensive knowledge of Information security and Cryptography (symmetric and asymmetric encryption, public key infrastructure (PKI) encryption, public key encryption, hash functions, digital signatures, digital certificates).
29. Working knowledge of router and switches configuration.
30. Practical experience in Windows Servers, RHEL and VMware system administration.
31. Knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications.
32. Experience with SQL database administration.
33. Extensive experience in operating systems backup and restore.
34. Practical experience in scripting (Python, PowerShell).
35. Practical experience in automation (Ansible).
36. Practical experience in SSL, TLS, and OpenSSL.
Desirable Experience:
37. VMware (VCA, VCP) administration
38. CISCO CCNA
39. Microsoft Certified Solution Associate (MCSA).
40. Microsoft Certified Solutions Expert (MCSE).
41. Experience in development and implementation of computer security policies.