IT Analyst (Cloud-Based External Attack Surface Management) in Mons, Belgium

Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. As we enter our 50th year in business, we are known for continuous innovation for government customers, both long-established and newly acquired, as our capabilities expand around the globe. Our work is state-of-the-art and made possible only through the best personnel, tools, and jobs in the national security business. We are highly collaborative in spirit and practice, and we freely share expertise across SPA in our quest for enduring solutions to critical concerns. Come work with the best!

SPA has an immediate need for a IT Analyst (Cloud-Based External Attack Surface Management) to provide contracting services to NATO.

Under the direction of the NCSC Security Compliance (OVA) Cell Head/Service Delivery Manager, the incumbent shall execute following tasks:

• On a daily basis, monitor and analyse EASM data to identify and respond to potential threat.

• Configure and maintain the cloud-based EASM tool including the process to authorize users to access the EASM tool.

• Collaborate with other members of the NATO Security Teams to ensure the protection of enterprise assets.

• Ensure remediation and mitigations recommendations are compliant with relevant NATO standards and regulations.

• Stay current with emerging security threats and technologies.

• Actively engage in the remediation process, follow its progress and report on it.

• Weekly / Monthly report with the found vulnerabilities, remediation actions taken and status.

• Keep an up-to-date list of POC responsible of internet facing services.

• Perform the reporting tasks on the NATO High Side network (note: the NATO High Side network is not accessible from outside the NCSC premises perimeter)

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, or related field Or equivalent experience

• 3+ years of experience in IT security, with a focus on Security Audit and / or Security Assessment of large organisation

• Strong understanding of security best practices and experience with cloud-based infrastructure

• Knowledge of relevant NATO standards and regulations

• Strong analytical and problem-solving skills

• Excellent communication and collaboration skills

• The incumbent shall be able to understand and interpret the outcomes of security audit reports (NATO high side network).

• Experience with threat intelligence, incident response and remediation a plus

• Knowledge of NATO organization and its IT infrastructure is a plus

• Certifications such as CISSP, CISM, or CISA is a plus.

• National of one of the 30 NATO countries

• In possession of an active National and/or NATO Secret security clearance

ID: 2023-16254

Security Clearance Requirement: NATO Secret (NS)

Post End Date: 2/20/2023