Hybrid Tenable Engineer en Spektrum

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting 

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

• Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
• Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
• Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
• Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
• Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

The Office of the CIO (OCIO) Enterprise Cyber Security Posture Improvement project focuses on acquisition and implementation of state‐of‐art tools to enhance Enterprise‐wide cybersecurity capabilities considering the key cybersecurity functions. NCIA initiated a project and procured Active Directory Security Assessment Tool (Tenable Identity Exposure) providing identity unification and risk scoring, real-time attack detection and continually assessing directory services security in real-time, eliminate attack paths that lead to domain domination, and investigate and inform. To support NCSC for the execution of tasks identified in the subject work package of the project, the NCIA is looking for subject matter expertise in the delivery of complex, foundational and novel Cybersecurity capability.

Role Duties and Responsibilities

• System Installation and Configuration:
  • Install and set up Tenable Identity Exposure,
  • Ensure the software is deployed correctly across relevant environments,
  • Set up integrations with identity systems like Active Directory, LDAP, or cloud‐based IAM solutions.
• System Maintenance and Updates:
  • Apply software updates and patches ,
  • Regularly update Tenable Identity Exposure and related systems to ensure the latest security patches and features are applied,
  • Ensure that the platform is running smoothly by checking system logs, server performance, and availability ,
  • Request and build monitoring and alerting mechanisms to be aware of the issues, system resource consumption,
  • Address technical issues, such as connectivity problems between Tenable Identity Exposure and other integrated systems or errors in scans or reports ,
• Manage Integrations :
  • Ensure Tenable Identity Exposure is integrated with other security solutions like SIEM (Security Information and Event Management) systems, vulnerability management platforms, or ticketing systems,
  • Set up proper data synchronization between identity systems and Tenable Identity Exposure to ensure accurate and up‐to‐date information.
• User and Role Management :
  • Configure access control for the Tenable Identity Exposure platform itself, ensuring that only authorized personnel have the right level of access ,
  • Set up appropriate permissions and roles for the identity systems being monitored, ensuring seamless integration.
• Monitoring and Reporting :
  • Proactively review logs and alerts generated by Tenable Identity Exposure to identify any technical issues, errors, or failures in the monitoring process,
  • Produce and distribute reports related to system health, monitoring activities, and compliance status (e.g., audit logs, system performance metrics.
• System Documentation:
  • Document configuration and changes: Keep up‐to‐date documentation of all configurations, integration steps, troubleshooting procedures, and system maintenance tasks,
  • Maintain an inventory of connected systems: Keep track of all integrated identity sources, IAM systems, and external tools connected to Tenable Identity Exposure.
• Automation and Scripting
  • Automate tasks: Write scripts or configure automation tasks to streamline routine system management tasks, such as regular backups, system checks, or integrations.
  • Improve system efficiency: Identify areas where automation could reduce manual intervention and improve operational efficiency.

Essential Skills and Experience

• 3+ years of experience in IT security, with a focus on System Administration, Security Tools Management in large organisations.
• Strong understanding of security best practices and experience with Tenable products especially with Tenable Identity Exposure.
• IP switching and routing in a wired and wireless environment.
• Systems administration, ideally both with Windows and Linux.
• Good engineering skills including programming and/or scripting knowledge (python, shell scripting, PowerShell).
• Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours.
• Experience with Service Management, monitoring and reporting tools, ideally Solarwinds.
• Database management skills, preferably MS SQL.
• Experience with system instrumentation solutions such as Ansible.
• Experience with Active Directory Management.

Desirable Skills and Experience

• Experience in working with NATO.
• Experience of working with NATO Communications and Information Agency.
• Experience of working with national Defence or Government entities.

Education

• Bachelor's degree in Computer Science, Information Technology, or related field Or equivalent experience.

Working Location

• Mons, Belgium

Working Policy

• On-Site

Travel

• Some travel to other NATO sites may be required

Security Clearance

• Valid National or NATO Top Secret personal security clearance