NATO UNCLASSIFIED

NOTIFICATION OF A VACANCYAT JOINT FORCE COMMAND, POST-BOX 270, NL- 6440 AG BRUNSSUM

DUTY LOCATION: BRUNSSUM (THE NETHERLANDS)

JOB TITLE: Engineer (Information Security/Assurance)INFOSEC Branch, Command GroupNCSA Sector Brunssum

GRADE: A-2 POST NUMBER: CSN GIX 0020

CLOSING DATE: 27 March 2009

POST CONTEXT:

NCSA (NATO CIS Services Agency) ensures the cost effective provision of secureend to end information exchange and processing services for NATO Consultation,Command and Control.

NCSA Sectors resource & plan, install, operate, protect, maintain and supportCommunication Information Systems (CIS) capabilities.Command Group directs, co-ordinates and supervises all business functions in orderto support Customers throughout the Area of Responsibility (AOR).INFOSEC is responsible for actively managing approved INFOSEC policy, throughmonitoring and auditing of CIS infrastructures, security inspections and StaffAssistance Visits throughout the AOR. It provides support, management and adviceon all aspects of INFOSEC. It provides central CRYPTO custodian function and actsas Central Distribution Agency (CDA) and as CRYPTO Forward Support Point(CFSP) if required. The incumbent manages the Cyber defence aspects ofINFOSEC activities and is the main technical advisor on INFOSEC matters.

REPORTS TO:Head INFOSEC

DUTIES:

Identifying system vulnerabilities and possible threats and applying the necessarysafeguards (both technical and administrative) to minimize those vulnerabilities anddefend against potential attacks.Developing and administering the site security program, including a detailed auditprogram for Sector networks and the implementation and monitoring of NATOsecurity policies and procedures.Developing, implementing and managing security awareness and training for siteusers.

Providing advice and assistance to various personnel (technical and non-technical)in identifying security requirements for the different automated systems includingsecurity considerations in application development, implementation, operation andmaintenance.

Performing risk assessments and identifying potential security risks that may arise.Report security issues and concerns to management staff.Investigating security incidences and taking appropriate actions.

NATO UNCLASSIFIED

NATO UNCLASSIFIED

Maintaining close liaison with external agencies on all computer-related securityissues.Evaluating and recommending security products and solutions.Provide engineering support and assistance for INFOSEC-related activities andproblems affecting change, operation and maintenance of NATO networks.As deputy Head INFOSEC:Monitor activity of COMSEC and COMPUSEC cells.Draft accreditation packages.Coordinate and/or perform INFOSEC inspections, surveys and visits.Enforce EMSECITRANSEC program.When given responsibility of acting HEAD INFOSEC, performs all section headduties with first line reporting of following staff: 1 X OR-B, 4 X OR-7, 3 OR-6 and 2 XOR-5.May be required to perform a similar range of duties elsewhere within theorganisation at the same grade without there being any change to the contractMay be required to undertake operation deployments and/or TDY assignments bothwithin and without NATO's boundaries.

QUALIFICA TIONS

A. ESSENTIAL1. Professional/ExperienceExperience in Information Systems Engineering and Maintenance - INFOSECImplementation.Experience in development and implementation of computer security policies.Experience in evaluation and accreditation of telecommunications and informationsystems.Experience in security requirements analysis.2. EducationlTrainingBachelor of Science (BSc) degree in related discipline and 4 years function-relatedexperience. Exceptionally, the lack of a university/college degree may becompensated by the demonstration of a candidate's particular abilities or experiencethat is/are of interest to NCSA; that is, extensive and progressive expertise in theduties related to the function of the post or progressive managerial experience infields directly related to the function of the post.3. LanguageThe work both oral and written in this post and in this Headquarters as a whole isconducted mainly in English. The post incumbent should therefore possess goodlanguage qualifications in English.4. Standard Automatic Data Processing KnowledgeWord Processing, Spreadsheet, Graphics Presentation,Database, Email ClientslWeb Browsers: Good working knowledge(able to use software without supervision for all normal requirements).5. Personal Attributes:The incumbent is expected to act with minimal supervision and to seek approval ofsolutions and recommendations from Head INFOSEC. Uses independent judgmentto propose solutions based on resources available. Good inter-personal andcommunication skills, tact and judgment.

NATO UNCLASSIFIED

NATO UNCLASSIFIED

B. DESIRABLE1. Professional/ExperienceExperience in managing the development, integration and implementation ofcomputer systems including hardware, software, networks and applications.Background in computer systems engineering, computer science and softwareengineering.2. EducationlTraining/ExperienceDemonstrable evidence in maintaining knowledge of advances in IS engineering.Graduate diploma in IS engineering related subject.Certifications such as:Certified Internet System Security Professional (CISSP)Microsoft Certified System Engineer (MCSE)Cisco Certified Network Associate (CCNA)CompTIA Network+, CompTIA Security+ and SANS Global Information AssuranceCertifications (GIAC).Formal TEMPEST training.Courses:NATO CIS Orientation

INFOSEC (COMSEC)INFOSEC (COMPUSEC)

CLOSING DATE FOR APPLICATION: 27 March 2009.

Before applying: please carefully read 'General information for applicants' publishedon www.ifcbs.nato.int, vacancies.Any application not in accordance with the 'General information for applicants'will not be accepted.

NATO UNCLASSIFIED