Overview
Staff Officer responsible for oversight of all security aspects related to JATEC CIS and execution of the CIS Security Accreditation for JATEC.
Key Responsibilities
- Represents JATEC as the principal CIS Security authority.
- Serves as Security Accreditation Manager.
- Ensures all CIS within JATEC is accredited in accordance with NATO Security Policy.
- Performs vulnerability and risk assessments.
- Develops and implements JATEC CIS Security programmes.
- Prepares and maintains Information Systems (IS) security policy, directives and user guidance.
- Provides technical advice and guidance for integrating and implementing CIS Security guidelines.
- Monitors the implementation and configuration of all hardware, software and firmware enhancements.
- Coordinates the test and evaluation of security software.
- Performs periodic security inspections of JATEC CIS.
- Participates in investigations of actual or suspected security breaches.
- Initiates actions for resolving security discrepancies.
- Manages and operates monitoring and forensic tools.
- Provides initial summary reports for forensic investigations.
- Coordinates and tracks COM approvals for data released to Non-NATO members.
- Acquires image of media for incidents when forensic review may be required.
- Initials in-processing briefings.
- Conducts Personal Equipment Registration.
- Reviews implementation of software/hardware to ensure CIS security is maintained.
- Provides required briefings to NNE staff on restrictions while working in a NATO environment.
- Provides training/advice to JATEC staff on special NNE responsibilities.
- Ensures appropriate CIS restrictions are in place for NNN working on NS.
- Maintains a strong Virus Prevention and Detection Program for JATEC CIS.
- Responds to virus incidents, reviews and maintains virus incident logs.
- Tests, evaluates and recommends appropriate incident response measures and security recovery procedures.
- Provides JATEC support to the NATO Computer Incidence Response Capability.
- Performs periodic review of system audit logs for the JATEC classified and unclassified networks.
- Identifies and researches unauthorized or suspicious activities and initiates security investigations if required.
- Assist in security inspections and investigations.
- Provides CIS Security corporate knowledge to the JATC staff.
Required Experience
- University Degree in information security, computer science or related discipline and 2 years function related experience, or Higher Secondary education and completed advanced vocational training in that discipline leading to a professional qualification or professional accreditation with 4 years post related experience
- At least 3 years experience in systems analysis or computer programming in a high level language.
- Experience in developing technical policy level documents.
- Experience in analysis, design, development or installation of CIS.
- Detailed knowledge of integrated computer/communication networks.
- Experience in information security policies and procedures.
- Experience in the application of security to CIS and the administration of Information systems in a secure environment.
- Previous relevant experience in an international organization, preferably NATO.
- Previous relevant work experience in the field of security of information.
Qualifications
- University Degree in information security, computer science or related discipline
- Higher Secondary education and completed advanced vocational training in that discipline leading to a professional qualification or professional accreditation
- University degree or equivalent in computer science, engineering, or related subject.
- A University Degree or Higher Secondary Education in Science or Engineering (Electronic/System/Engineering Telecommunication) or related technical discipline.
