cover image
Spektrum

Spektrum

spektrum-group.com

5 Jobs

9 Employees

About the Company

Spektrum are an international sales and management consulting firm who don’t just say we’re different, we are different.

We solve today's defence, humanitarian and government market problems, evolving to meet its clients' challenges.

Listed Jobs

Company background Company brand
Company Name
Spektrum
Job Title
Cyber Security System Administrator
Job Description
Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who We Are Supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

The Office of the CIO (OCIO) Enterprise Cyber Security Posture Improvement project focuses on acquisition and implementation of state-of-art tools to enhance Enterprise-wide cybersecurity capabilities considering the key cybersecurity functions.

NCI Agency initiated a project and procured Active Directory Clean-up Tool (Tenable Identity Exposure) providing identity unification and risk scoring, real‑time attack detection and continually assessing directory services security in real‑time, eliminate attack paths that lead to domain domination, and investigate and inform.

To support NISC for the execution of tasks identified in the subject work package of the project, the NCI Agency is looking for subject matter expertise in the delivery of complex, foundational and novel Cybersecurity capability.

Role Duties And Responsibilities

Active Directory security operations:

Operate the Tenable Identity installations, in coordination with the Continuous Vulnerability Assessment and Identity and Access Management teams,
Monitor the Tenable Identity Exposure-generated events, detect and support remediation of Active Directory incorrect permissions/roles/groups’ configurations,
Report the identified CIS security incidents following the NCIA procedure, and support the security investigations,
Create monthly AD security compliance reports, including the amounts of active, inactive and disabled users and service accounts,
Support the installation/configuration, and upgrade the Tenable Identity Exposure installations in scope of this SOW, following the NCIA change management process and using NCSC security configurations to ensure compliance of the managed networks with NATO Security Directives,
Support the development of mitigation and remediation plans, following the identification and assessment of cybersecurity risks for Active Directories in scope,
Assist with complex remediation activities for the NATO CIS in scope of this SoW; conduct remediation activities in collaboration with the NCIA Service Delivery Managers,
Ensure adequate level of systems/data protection is implemented for NISC managed CIS in accordance with NATO Security policies and directives,
Perform all operation, support and maintenance activities described in Annex C,
Log and track Service and Change requests using the enterprise ticketing system (ITSM),
Ensure all tickets are updated with accurate and detailed information and resolved within the agreed service levels.

Escalation:

Escalate complex issues to appropriate teams when necessary,
Follow up on escalated issues to ensure timely resolution and user satisfaction.

Knowledge Base Management:

Contribute to the creation and maintenance of a knowledge base, documenting common issues and solutions,
Share knowledge and best practices with team members to improve overall service quality.

Performance Monitoring:

Monitor support metrics and KPIs to ensure high-quality service delivery,
Participate in regular reviews to identify areas for improvement and implement corrective actions.

Automation and Efficiency:

Develop and implement automation scripts to streamline routine support tasks such as software installations, updates, system and software checks and notifications,
Utilize automation to create workflows for repetitive tasks, improve service efficiency and proactively implement solutions.

Communication and Collaboration:

Communicate effectively with internal user community to understand their issues and provide clear instructions,
Collaborate with IT teams to resolve issues and improve service delivery.

Essential Skills And Experience

Technical Proficiency:

Microsoft Active Directory and PowerShell expert knowledge,
Experience with security configurations for Active Directory-based enterprise networks,
Knowledge of and experience with Tenable Identity Exposure,
CIS Security Assessments (SA) remediation.

Problem-Solving Skills:

Strong troubleshooting skills to diagnose and resolve hardware, software, and network issues,
Ability to guide users through problem-solving steps effectively.

Automation Skills:

Proficiency in automation to create workflows and automate repetitive processes,
Ability to identify and implement automation opportunities to enhance efficiency.

Communication and Interpe...
Braine-L’Alleud, Belgium
On site
27-02-2025
Company background Company brand
Company Name
Spektrum
Job Title
Level 3 Firewall and Guard Engineer
Job Description
Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who We Are Supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Duties And Responsibilities

Under the direction of Section Head, Gateway Security Services, the 'Level 3 Firewall and Guard Engineer' will have two primary roles:

Build, implement, maintain, and support firewalls and other network security devices.
Configuring, maintaining and supporting Mailguards and Data Diodes

Essential functions include, but are not limited to:

Central administration and configuration of Firewalls, Guards and Data Diodes to ensure continuing functionality and availability.
Firewall policy/ruleset implementation and verification
Updating and implementation of guard and diode configuration
Provide technical support in troubleshooting infrastructure and operational issues and collaborating with other teams for a successful resolution;
Collaborate with the Infrastructure Management and other Cyber Security teams
Provide assistance to Incident Handlers to identify and remediate security incidents
Review security documentation and provide technical advice, when requested
Perform other duties as may be required.

Essential Skills And Experience

The required skillset for the contracted individual is extensive knowledge and experience (more than 5 years) in the following areas:

Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
Firewall installation and management of other vendors
Scripting (Bash, Python, Ansible)
Experience with network protocols and traffic analysis
Ability to troubleshoot complex network security issues
LAN/WAN networking including protocol network architecture, and the vulnerabilities of modern operating systems and applications
TCP/IP protocols and services
Knowledge of *nix-based Operating Systems
Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams
In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:
Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
Previous work in an international environment comprising both military and civilian elements.
Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, MCSE/S, CISA, GSNA, SANS GIAC

Working Location

Mons, Belgium

Working Policy

On-Site

Travel

Local travel in Belgium between NATO/NCIA locations of no more than 6 days/year is foreseen

Security Clearance

Valid National or NATO Top Secret personal security clearance

We never know what new opportunities might be just over the horizon. If this opportunity isn't for you please feel free to send us your resume anyway and be the first to know if something suitable for your skills and experience comes up.
Mons, Belgium
On site
27-02-2025
Company background Company brand
Company Name
Spektrum
Job Title
Cyber Threat Intelligence Researcher
Job Description
Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who We Are Supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

The Cyber Threat Analysis Branch (CTAB) is looking for a Cyber Threat Intelligence Researcher to support in the provision of technical cyber threat intelligence to the NATO Enterprise and Alliance through researching threat actors’ tactics, techniques and procedures.

NATO Joint Intelligence and Security Division

The Joint Intelligence and Security Division (JISD), under the leadership of the Assistant Secretary General for Intelligence and Security (ASG I&S), comprises two principal pillars: Intelligence – headed by the Deputy ASG for Intelligence; and the NATO Office of Security (NOS) – headed by the Deputy ASG for Security. Intelligence is responsible for ensuring the situational awareness of the North Atlantic Council and the Military Committee, for the analysis of the indications and warnings in support of the NATO Crisis Response System and for the development of intelligence policies and capabilities for NATO. Its functional areas address: intelligence analysis and production, intelligence policy and capability development.

The joint civilian and military Intelligence Production Unit (IPU), under the JISD, delivers strategic intelligence-based analysis to support North Atlantic Council (NAC) and Military Committee (MC) decision making on strategic issues of concern. The IPU produces a range of planned and tasked intelligence products on regional issues in Eurasia, Africa and the Middle East, and on transnational issues such as hybrid warfare, terrorism, instability, weapons of mass destruction and energy security.

The Cyber Threat Analysis Branch (CTAB), under the IPU, is responsible for providing evidence-based assessments of the cyber threat landscape to empower NATO stakeholders to make risk-informed decisions. The multidisciplinary team combines all-source data with cutting edge technologies to support and enhance the Alliance leaderships’ understanding on the nature of cyber competition and conflict. CTAB systematically identifies strategic patterns and trends in cyber space and generates tailored insights to support network defence and mission assurance with predictive analysis, cyber threat intelligence, and threat hunting.

NATO POC for supervision and coordination purposes Vincent Ruers, Threat Research Team Lead

Role Duties And Responsibilities

Use the CTAB Cyber Threat Intelligence Platform and other sources to conduct research into prioritized cyber threat actors to discover new infrastructure and capabilities under the direction of the team lead.
Conduct pattern analysis on threat actor infrastructure to detect new malicious infrastructure, and script and automate that detection to allow for threat intelligence at scale.
Find and analyse potential new cyber threats to NATO based on existing or novel techniques and scripts, and correlate with all available sources to establish an adequate threat picture.
Translate threat actor tactics, techniques and procedures into actionable intelligence for 1) network defenders through creating detection signatures, contextualizing IoC’s, and writing standardized CTI products, and 2) strategic cyber analysts for use in intelligence production to decision makers.
Support other threat researchers in their activities, and advise and assist strategic cyber threat analysts in understanding complex technical topics.

Essential Skills And Experience

At least 2 years of experience with producing or working with cyber threat intelligence.
Knowledge and experience in analysis of various threat actor groups, attack patterns and tactics, techniques, and procedures (TTPs) to produce actionable threat intelligence to enable network and host defences in organizations with demonstrable impact.
Experience with and knowledge of the intelligence lifecycle, analytical tradecraft and frameworks such as MITRE ATT&CK.
Good communication skills, both orally and written. Able to translate complex technical topics into information conveyable to non-domain experts. Can easily cooperate with other threat researchers by taking and giving feedback.
Knowledge of network and system fundamentals and experience in any of the following cybersecurity fields: network monitoring, threat hunting, incident response, red teaming, host/network forensics, or reverse engineering.
Experience with p...
Brussels, Belgium
Hybrid
03-03-2025
Company background Company brand
Company Name
Spektrum
Job Title
Cloud Analyst - External Attacks
Job Description
Spektrum have a wide range of exciting opportunities in several global locations.

We are always looking to add great new talent to our team and look forward to hearing from you.

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who We Are Supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.

The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC’s role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services. The Portfolio ranges from Programme of Work (POW) activities funded via the NATO Military Budget (MB) to Critical / Urgent Requirements (CURs/URs) and NATO Security Investment Programme (NSIP) projects funded via the Investment Budget (IB). In some edge cases, projects are also funded via the Civilian Budget (CB). Projects can span multiple years and are governed by various frameworks, including the Common Funded Capability Development Governance Framework (CFCDGM).

In order to execute this work, the NCI Agency is seeking additional support through contracted resources (or consulting) to support the work undertaken by the NATO Cyber Security Centre (NCSC) in the area of Communications and Information System (CIS) security, cyber defence and cyberspace operations. This Statement of Work (SoW) specifies the required skillset and experience. To support NCSC for the execution of tasks identified in the subject work package of the project, the NCIA is looking for subject matter expertise in the delivery of complex, foundational and novel Cybersecurity capability.

Role Duties And Responsibilities

This task includes data analysis and reporting of data reported by the Senior Online Vulnerability Assessment (OVA) Analyst Support. For the provision of consistent support and the execution of the task, NCIA will get subject matter expertise from the industry with a service (deliverable based/completion type) based AAS framework contract in the delivery of requested capability.

The Cyber Security External Attack Surface Management (cloud based) Support gives visibility and insight on the networks in NATO environment, which in turn is critical to effective management, strong security and compliance, and efficient migrations and consolidations.

More broadly, NATO needs to be able to monitor the configuration of its domain controllers in order to prevent exploitation by malicious threat actors.

Under the direction / guidance of the NCSC Point of Contact, a contractor will be the part of the NCSC Team supporting the following activities:

Daily: Maintain a comprehensive list of all vulnerabilities being taken care of, along with their remediation or mitigation status. The dataset shall be updated no later than 2 working days after the notification of a change is received.
Weekly: Deliver a comprehensive vulnerability report to the Service Delivery Manager (SDM) and Service Owner (SAO), taking into account all vulnerabilities posing a security risk to the monitored organization, recommendation of remedial actions recommended to the system/application owners and the status of the recommended actions. The weekly report is expected to be delivered each first working day of a calendar week, before Close of Business. No weekly report is due if that week does not include any working day (for instance: long official holidays such as Christmas break).
Monthly: Monthly: delivery of vulnerability report to the SDM and SAO, with an overview of the critical/high vulnerabilities identified, the status of the recommended actions to show in a graphical way plus the trend of the security posture of internet facing services. The monthly report is expected to be delivered within 5 working days after the last working day of the past month.
Yearly: Deliver a report to the SDM and SAO, with a summary of all events and actions that occurred during the year. The yearly report is expected to be delivered within 15 working da...
Mons, Belgium
On site
28-02-2025
View 5 more jobs at Spektrum