C003904 Level 3 Firewall and Guard Engineer (CTS) - TUE 17 Dec

Deadline Date: Tuesday 17 December 2024

Requirement: Vulnerability Assessment Engineer

Location: Mons, BE

Full Time On-Site: Yes

Time On-Site: 100%

Total Scope of the request (hours): 836

Required Start Date: 27 January 2025

End Contract Date: 31 December 2025

Required Security Clearance: NATO COSMIC TOP SECRET

NOTE: We can only accept CTS cleared candidates for this role due to security regulations. We cannot accept NS cleared candidates with ongoing CTS clearance requested.

Duties and Role:  

Under the direction of Section Head, Gateway Security Services, the 'Level 3 Firewall and Guard Engineer' will have two primary roles:

• Build, implement, maintain, and support firewalls and other network security devices.
• Configuring, maintaining and supporting Mailguards and Data Diodes

Essential functions include, but are not limited to:

• Central administration and configuration of Firewalls, Guards and Data Diodes to ensure continuing functionality and availability.
• Firewall policy/ruleset implementation and verification
• Updating and implementation of guard and diode configuration
• Provide technical support in troubleshooting infrastructure and operational issues and collaborating with other teams for a successful resolution;
• Collaborate with the Infrastructure Management and other Cyber Security teams
• Provide assistance to Incident Handlers to identify and remediate security incidents
• Review security documentation and provide technical advice, when requested
• Perform other duties as may be required.

Requirements

Skill, Knowledge & Experience:

• The candidate must have a currently active NATO COSMIC TOP SECRET security clearance

The required skillset for the contracted individual is extensive knowledge and experience (more than 5 years) in the following areas:

• Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
• Firewall installation and management of other vendors
•  Scripting (Bash, Python, Ansible)
• Experience with network protocols and traffic analysis
• Ability to troubleshoot complex network security issues
• LAN/WAN networking including protocol network architecture, and the vulnerabilities of modern operating systems and applications
• TCP/IP protocols and services
• Knowledge of *nix-based Operating Systems
• Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams

In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:

• Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
• Previous work in an international environment comprising both military and civilian elements.
• Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC