cover image
EMW

C004123 CIS Security Engineer (CTS) - MON 31 Mar

On site

Mons, Belgium

Freelance

18-03-2025

Job Specifications

Deadline Date: Monday 31 March 2025

Requirement: CIS Security Engineer

Location: Mons, BE

Full Time On-Site: Yes

Time On-Site: 100%

Total Scope of the request (hours): 836

Required Start Date: 12 May 2025

End Contract Date: 31 December 2025

Required Security Clearance: NATO COSMIC TOP SECRET

Duties and Role:

Provide information security oversight of all NISC Managed CIS and networks within the Agency, both for internal operations and for Agency's customer-funded Networks, Programme of Work, and ensures the adequate level of systems/data protection in accordance with NATO INFOSEC policies and directives;
Design, deploy, configure, maintain and operate the NISC ePolicyOrchestrator (EPO) managed security tools installations including but not limited to Trellix ENS, DLP, MAC, RSD, TIE, HX, ensuring the approved security configurations are implemented and maintained throughout entire Trellix products' lifecycle;
Design, deploy, configure, maintain and operate the Active Directory (AD) security solutions and tools for NISC managed CIS, ensuring continuous AD security monitoring and vulnerabilities remediation coordination;
Is responsible for provision of expert advice, in coordination with NCSC, on the adequate level of information security posture and for ensuring such advice, where appropriate, is implemented under governance of NATO Security Accreditation Board;
Ensure adequate level of systems/data protection in accordance with NATO Security policies and directives;
Conduct remediation activities in collaboration with the NCI Agency Service Delivery Managers;
Conduct internal vulnerability assessment testing on NISC systems and provide associated reporting;
Provide feedback, advice and guidance to senior management in the areas of enterprise architecture, NATO security accreditation activities, procurement as well as training and awareness programmes;
Performs other duties as required


Requirements

Skill, Knowledge & Experience:

The candidate must have a currently active NATO COSMIC TOP SECRET security clearance
Expert knowledge of Trellix ePO and managed products (ENS, DLP, MAC, RSD, TIE, HX);
Comprehensive knowledge of the principles of computers and communication security, networking, and the vulnerabilities of modern operating systems and applications;
Experience with implementation and integration of CIS Security protective measures in Active Directory based environments;
Experience with Cyber Hygiene and the top 20 Critical Security Controls for effective cyber defence;
Ability to investigate and analyse complex scenarios and solve problems in innovative ways;
Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams
Writing and Reporting - Writes convincingly; writes clearly, succinctly and correctly; avoids the unnecessary use of jargon or complicated language; writes in a well-structured and logical way; structures information to meet the needs and understanding of the intended audience
Working with People - Shows respect for the views and contributions of other team members; shows empathy; listens, supports and cares for others; consults others and shares information and expertise with them; builds team spirit and reconciles conflict; adapts to the team and fits in well
Applying Expertise and Technology - Applies specialist and detailed technical expertise; uses technology to achieve work objectives; develops job knowledge and expertise (theoretical and practical) through continual professional development; demonstrates an understanding of different organizational departments and functions

About the Company

EMW was founded in 1995 by engineers and managers who formerly held senior positions in well known telecommunications and information technology companies to pursue their vision for this new company. Our core business is providing information and communication technology services in the areas of planning, engineering and implementation; project and program management; systems integration; operations and maintenance; and training. Our competencies range over all aspects of inside and outside plant; feeder, access and inter-o... Know more

Related Jobs

Company background Company brand
Company Name
EMW
Job Title
2025-0072 Network Analyst Support for Project and O&M (NS) - MON 31 Mar
Job Description
Deadline Date: Monday 31 March 2025 Requirement: Provision of Network Analyst support for Project and O&M (Operations & Maintenance) Location: Brussels, BE Full Time On-Site: Yes Time On-Site: 100% Period of Performance: 2025 BASE: 1 July 2025 - 31 December 2025 with possibility to exercise the following options (each option = 6 months): 2026 Option 1: 1st January 2026 until 30th June 2026 2026 Option 2: 1st July 2026 until 31st December 2026 2027 Option 1: 1st January 2027 until 30th June 2027 2027 Option 2: 1st July 2027 until 31st December 2027 Required Security Clearance: NATO SECRET 1 INTRODUCTION To strengthen the Alliance through connecting its forces, the NCI Agency delivers secure, coherent, cost effective and interoperable communications and information systems in support of consultation, command & control and enabling intelligence, surveillance and reconnaissance capabilities, for NATO, where and when required. It includes IT support to the Alliances' business processes (to include provision of IT shared services) to the NATO HQ, the Command Structure and NATO Agencies. The Directorate of CIS Support Units (DCSU) is responsible to manage, deliver and maintain assigned Communications and Information System (CIS) products and services for the Agency's customers including NATO Headquarters (NHQ), the NATO Command Structure (NCS), NATO Force Structure (NFS), Nations and internal Agency users. DCSU provides liaison, planning and coordinating functions for Alliance Missions, Operations and Exercises. Services are delivered in coordination with the Enterprise Service Operations Centre (ESOC) and Agency Service Lines/Service Centres under the Enterprise Service Delivery Model (ESDM). NCI Agency CIS Support Unit (CSU) Brussels, located in Brussels (BEL) is the primary Information, Communications and Technology (ICT) service provider for 24/7 support to the Secretary General, the International Staff (IS), the International Military Staff (IMS) and other Customers in the NATO Headquarters in Brussels. CSU Brussels enables end-to-end CIS services as it installs, operates, maintains and supports the full range of CIS capabilities during peacetime, crisis and war throughout its allocated Area of Responsibility (AOR) and as otherwise directed. The Network Management Section (NMS) supports and maintains all Local Area Network Systems (Voice and Data) at NATO HQ and is responsible for VoIP implementations, all active and passive network components of the supported networks. It is NMS who provides network infrastructure for journalists during Ministerial meetings and special events and provides support for Remote Connections to the main networks. A crucial part of the responsibility of this section is the static and mobile remote connectivity of the Secretary General. 2 OBJECTIVES The main objectives of this statement of work can be summarized as follows: The service contractor will assist the Network Management Analyst team to provide O&M support for the network environments. The focus of the workload will consist of O&M (Operations & Maintenance) support and project related work. He/she will be essential for ensuring operational resilience, promoting a collaborative work environment and mitigating the risks associated with the dependency on limited resources". The O&M support service provides dedicated assistance to the Network Analyst team, ensuring the smooth operation of all network environments. This service focuses on the resolving issues and problems, performing routine tasks that are essential for maintaining system stability, enhancing operational resilience, and ensuring the continuity of service. The project related service provides assistance to the Network Analyst, ensuring the work package deliverables for the Asset Replacement project are met. This service focuses on setup of equipment, perform mandatory security related activities, testing, staging and deployment of the equipment. 3 SCOPE OF WORK Under the direction of the Section Head, the resource will provide services related to the following main activities: Provide first and second line network support to the Service Centre; Perform diagnoses and resolve network incidents and problems; Install, replace, modify and configure network systems; Monitor network systems and proactively report and resolve potential network issues; Create and maintain Standard Operating Procedures to document network systems; Operate Cisco Identity Services Engine systems to support client installations, moves and changes; Provide support and assistance during preparation and security assessments; Take initiative to investigate, diagnose and resolve issues in a systematic approach; Ensure that Routing, Switching and other network elements are backed up; Propose and implement network improvements; Liaise and collaborate internally, with the NCIA Service Lines and external providers for fault rectification and network improvement activities; Provide input to and assist with on-site security surveys, validations and acceptance testing of network infrastructure systems; Work on own initiative with limited supervision; Assist his/her superiors and recommend solutions; Periodically provide on demand support outside of business hours; Perform other duties as may be required It is expected that ONE resource is providing the above services. The contractor will provide the service on-site. The contractor will provide services during NATO HQ working hours. The measurement of execution for this service is sprints, with each sprint planned for a duration of 1 week. The content and scope of each sprint will be agreed in writing, during the sprint-planning meeting, based on the activities mentioned above. 4 DELIVERABLES AND PAYMENT MILESTONES Subject on actual requirements, contractor performance and available funding, the Purchaser reserves the right to exercise optional sprints for 2025, at a later time, within the same scope and cost. The payment shall be dependent upon successful acceptance of the Delivery Acceptance Sheet (DAS) - (Annex B) including the EBA Receipt number. Invoices shall be accompanied with a DAS, signed by the Contractor and Purchaser's authority. The following deliverables are expected from the service on this statement of work: 2025 BASE: 01 July 2025 to 31 December 2025: Deliverable: 25 sprints for Provision of Network Analyst Support (Number of sprints is calculated considering a starting date 1 JULY 2025. This will be adjusted based on actual starting date.) Payment Milestones: Upon completion of each fourth sprint and at the end of the service. Completion of each milestone shall be accompanied documented in Delivery Acceptance Sheet (DAS) - (Annex B), signed for acceptance by the Purchaser's authorized point of contact and the Contractor 2026 OPTION 1: 01 January 2026 to 30 June 2026: Deliverable: 25 sprints for Provision of Network Analyst Support (Number of sprints is calcula...
Brussels, Belgium
On site
Freelance
17-03-2025
Company background Company brand
Company Name
EMW
Job Title
2025-0037 Cyber Security and Guard Support (NS) - FRI 28 Mar Relaunch
Job Description
Deadline Date: Friday 28 March 2025 Requirement: Cyber Security and Guard Support Location: Mons, BE Full Time On-Site: Yes Period of Performance: As soon as possible but not later than 18 May 2025 until 31 December 2025 with possibility to exercise the following options: 2026 Option: 1st January until 31st December 2026 2027 Option: 1st January until 31st December 2027 2028 Option: 1st January until 31st December 2028 Required Security Clearance: NATO SECRET BACKGROUND The NCIA has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange. INTRODUCTION The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC's role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services. In order to execute this work, the NCIA is seeking additional manpower through contracted resources to support the work undertaken by the NATO Cyber Security Centre (NCSC) in the area of Communications and Information System (CIS) security, cyber defence and cyberspace operations. The Gateway Security Services (GSS) Section facilitates and accounts for all lifecycle aspects of Boundary Protection Components deployed within and on the edge of NATO networks in order to protect key NATO information while allowing NATO staff to work securely and process their information. NCIA is looking for subject matter expertise for the delivery of this complex and critical cybersecurity capability. This contract is to provide consistent support on a deliverable-based contract to NCSC based on the deliverables that are described in the scope of work below. PURPOSE The Cyber Security SECURE Branch delivers a wide suite of enabling services in specific areas of Technical Services and CIS protection. Gateway Security Services operate (amongst others) various technologies such as data diodes, secure mail gateways and guard components support the secure cross-domain data exchange. This Statement of Work (SOW) outlines the services to be provided by the Supplier to NCIA Cyber Security Centre Secure Branch to fulfil identified CYBER SECURITY AND GUARD Support more effectively. SCOPE OF WORK The main objective of the statement of work is to underline the Cyber Security needs of the NCSC and to look for support to Gateway Security Services, the ‘Level 3 Cyber Security and Guard that should be manned by the service supplier on a daily basis to ensure service objectives are met continuously. The aim of this SOW is to support NCSC with technical expertise specifically related to the operation and maintenance of CYBER SECURITY AND GUARD Support with a deliverable based (completion-type) contract to be executed in 2025. The service provider will be required to deliver a daily activities schedule, orchestrate NCIA processes as well as represent NCSC business unit on an Enterprise Level where required. Tasks performed by a contractor include: Build, implement, maintain, and support systems within existing cross-domain gateways (System Administration) Configure, maintain, review and update configuration settings and policies on guard components and data diodes (System Configuration) Under the direction / guidance of the NCSC Point of Contact, a contractor will be the part of the NCSC Team supporting the following activities: Central system administration of Guards and Data Diodes to ensure continuing functionality and availability Hardware and software systems installation and configuration User and access management Back up and restore systems data Monitor system performance and availability Log forwarding towards archiving and/or forensic systems Analyze, troubleshoot and resolve application issues Development of automation scripts to meet day to day system administration tasks Central configuration of Guards and Data Diodes Implementation and verification of guards and data diode configuration to meet customer cross-domain data exchange requirements Adaptation of release markings Adaptation of email attachment types Configuration of additional cross-domain flows Back up and restore configuration data Updating of Guard and Data Diode software/patches Monitor patch releases Test new software and patches Support A2SL process for approval of software updates Installation and configuration of software and patch updates Documentation of Guards and Data Diode systems Development of SOPs and other documentation for repetitive activities Produce and maintain comprehensive documentation for all implemented systems Review and update security documentation Education/training/familiarization of other teams Support of Guards and Data Diodes Technical support in troubleshooting infrastructure and operational issues Collaborate with other teams for a successful resolution; Provide technical support and guidance by answering end-user requests to identify issues in secure cross-domain data exchange The measurement of execution for this work is sprints, with each sprint planned for a duration of 1 week. Central configuration of Guards and Data Diodes The purpose of daily Central administration and configuration of Guards and Data Diodes is to ensure continuing functionality and availability of those critical systems in order to support a wide range of end-user facing services. The Service Provider will: Support the team by routinely reviewing the tickets queue to ensure 4 hours response time for normal events and 1 hour response time for high/critical events Provide multi-channel support (phone, email, internal chat) Develop and maintain a repository of scrips to automate recurring systems administration activities Ensure correct logging and log forwarding configurations to support availability of system events in central log database Provide pro-active system administration and maintenance to prevent system failures Escalate critical events to appropriate channels within 4 hours GSS contractor is expected to be an experienced Linux administrator and should have sufficient knowledge in Hardware, Systems, Networks, and Cyber Security Tools. Preparation: Review of incoming administration tickets/requests, initial assessment, categorization and preparation for implementation. Monitor system counters, log files and other usage information to pro-actively identify bottlenecks, upcoming problems. Identify routing tasks that can be automated. Implementation: Following established processes...
Mons, Belgium
On site
Freelance
17-03-2025
Company background Company brand
Company Name
Enzo Tech Group
Job Title
Network Engineer
Job Description
Job Title: Azure Network Engineer (Contract) Company: Leading Global Insurance Firm Location: Hybrid - Antwerp or Brussels Duration: 6-12 months (with potential extension) Job Description: We are seeking an experienced Azure Network Engineer to support the design, implementation, and maintenance of cloud-based network infrastructure for a major insurance company. The role involves optimizing network performance, ensuring security compliance, and troubleshooting complex connectivity issues within Azure environments. Key Responsibilities: Design and implement Azure networking solutions (VNETs, VPNs, ExpressRoute, NSGs, Load Balancers, etc.). Manage hybrid cloud connectivity and integrate on-premises networks with Azure. Optimize network security and ensure compliance with industry standards. Troubleshoot network performance and connectivity issues. Collaborate with security, cloud, and infrastructure teams to enhance system resilience. Automate network configurations using Terraform, PowerShell, or ARM templates. Requirements: Proven experience in Azure networking within enterprise environments. Strong knowledge of Azure Firewall, ExpressRoute, and VPN Gateway. Expertise in BGP, routing, and hybrid cloud connectivity. Familiarity with network security best practices. Strong Network Engineering experience
Brussels, Belgium
Hybrid
Freelance
13-03-2025
Company background Company brand
Company Name
LanceSoft Europe
Job Title
Security Consultant (Medior)
Job Description
Job Title: Security Consultant (Medior) Location: Brussels, Belgium Duration: 12 months+ extensions Job Description Demonstrable experience as a Security Consultant within one of the following environments: data, infrastructure, applications, Medior (3,00 years), Must have Proven experience in analyzing, optimizing and documenting security processes and governance, Must have Demonstrable expertise in a specific knowledge domain of information security, Must have Language requirement: Dutch at European CEFR - level C2, Must have Demonstrable experience of security management techniques and/or frameworks (e.g.: ISO27000 series, COBIT for Security, NIST, OWASP, CIS Critical Security Controls for Effective Cyber Defense), Should have Demonstrable knowledge and experience via certificates depending on domain of expertise (e.g. CISM, CISSP, CEH), Should have
Brussels Region, Belgium
Hybrid
Freelance
11-03-2025