Cyber Security Firewall Support 1

EXPERIENCE AND EDUCATION:

Essential Qualifications/Experience:

· Bachelor's degree in Computer Science, Information Technology, or related field Or equivalent experience.

· Minimum qualifications required

· Official firewall certification (such as PCNSA,)

· Official Network Management certification (such as Network )

· Official Service Management certification (such as ITIL Foundation)

· 2 years of experience in IT security, with a focus on Security Tools Management in large organisations.

· Strong understanding of security best practices

· Good engineering skills including programming

· Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours

· 2 years of experience in the following areas:

ü Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments

ü Firewall installation and management of other vendors

ü Scripting/Automation (Bash, Python, Ansible)

ü System monitoring and troubleshooting

ü Experience with network protocols and traffic analysis

ü Ability to troubleshoot complex network security issues

ü LAN/WAN networking including protocol network architecture

ü TCP/IP protocols and services

· Profound communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams

· Understanding of Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)

· Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, CISA, GSNA, SANS GIAC

· In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:

· Experience in working with NATO

· Experience of working with NATO Communications and Information Agency

· Experience of working with national Defence or Government entities

· Previous work in an international environment comprising both military and civilian elements

· Central system administration of NGFWs to ensure continuing functionality and availability

ü Initial systems installation (software, application and threat signatures) and configuration

ü Adding system to central management capability

ü Assign initial template and device group settings

ü Configure date/time/DNS settings

ü Configure high-availability settings

ü Update system software/signatures during pre-defined maintenance windows

ü Support the team by routinely reviewing the tickets queue to ensure 4 hours response time for normal events and 1 hour response time for high/critical events

ü Provide multi-channel support (phone, email, internal chat)

ü Develop and maintain a repository of scrips to automate recurring systems administration activities

ü Ensure correct logging and log forwarding configurations to support availability of system events in central log database.

ü Provide pro-active system administration and maintenance to prevent system failures

ü Escalate critical events to appropriate channels within 4 hours

· Support system upgrading/patching during established maintenance windows GSS contractor is expected to be a knowledgeable firewall administrator and should have sufficient knowledge in Networks, and Cyber Security Tools

· Central configuration of NGFWs

ü Implementation and verification of firewall rulesets/policies

ü Adaptation of firewall rulesets/policies

ü Adaptation of email attachment types

ü Configuration of additional firewall rulesets/policies

ü Support the team by routinely reviewing the tickets queue to ensure 4 hours response time for normal events and 1 hour response time for high/critical events

ü Provide multi-channel support (phone, email, internal chat)

ü Update the configuration of firewall rules/policies based on changing requirements

ü Support the development of

· The primary purpose of Central configuration of firewalls is to ensure that all configuration requests are properly prepared (investigated, evaluated and risk assessed) for consideration, documented and implemented

· Documentation of Firewall systems

ü Development of SOPs and other documentation for repetitive activities

ü Produce and maintain comprehensive documentation for all implemented systems

ü Review and update security documentation

ü Document the setup, configuration, installation specifics into the GSS documentation repository

ü Attend internal meetings within GSS team to provide hands-on demonstration and familiarization of firewall systems

· ITSM Support of Firewall systems

ü Technical support in troubleshooting infrastructure and operational issues

ü Collaborate with other teams for a successful resolution

ü Provide technical support and guidance by answering end-user requests to identify issues in secure cross-domain data exchange

ü Provide support to NATO staff users and collaborate with other admin staff to resolve tickets related to firewall configurations and policies

ü Create/update entries on ticket activities

· The support activities are typically documented within the NCIA ITSM tool suite