Endeavour Recruitment has an excellent contract opportunity for a Senior Cyber Security System Engineer to join a large telecommunications company based in Brussels.
The ideal candidate will be part of the IT/Cyber Security team accountable for the engineering and operational support of the related applications and services to secure the telecom system and IT networks.
Responsibilities:
- The engineering activities related to automation, application/system monitoring and integration to the client’s SIEM for security monitoring.
- The engineering activities of a subset of the client’s IT/Cyber Security applications used to prevent and detect cyber security breaches related to the IT and telecom networks.
Role:
Automation & application / system monitoring engineering:
- Assessment and implementation of the possible automation solutions to ease system integration and self-repair processes.
- Assessing and performing the required monitoring configuration to ensure efficient application and system monitoring.
- Provide support to the application engineers for application integrations and automation.
- Produce and keep up to date with technical and operational documentation.
Security monitoring engineering:
- Participating in the assessment and implementation of the solutions to enable data integration into our client’s SIEM (Hp ArcSight).
Security engineering:
- Performing the integration of security solutions in the different environments with the support of the vendor, engineer and operational team.
- Attending to the testing/validation of the solution (resolution of technical issues discovered during testing, participation/support the ‘non-functional requirements’ validation).
Providing support to the operational team in case of major incident or planned intervention when required, this may include outside business hours.
Roadmap / life cycle:
- Involved with the technical roadmap/capacity planning/patching strategy of solutions with the collaboration of the vendor, domain architect, application engineers and operational team.
Required skills / experience :
- Bachelor/Master in computer sciences or equivalent by experience.
- 5 - 10 years of experience with IT application support (engineering or operations).
- Strong interest in IT/Cyber security threads and risks.
Technical knowledge/experience:
Essential:
- Knowledge and experience to setup and configure OS, application, network component monitoring (logs, SMNP traps,…) based on network element/fault element manager such like Nagios, groundwork (preference) including graphical representations for service monitoring (Grafana as example).
- Knowledge and experience to create ‘complex’ regular expressions and data manipulation based on :
- Scripting language (Bash, Perl, Pytho).
- SQL queries
- Knowledge and experience with implementation/configuration of solutions to ease massive deployment (with specific configuration per server) and to ensure automated heath repair process based on products such like SaltStack, Puppet, Chef.
- General knowledge of Linux and Windows operating systems and databases administration.
- Good all round knowledge of the networking, routing protocols, firewalls in order to understand, align with the dedicated network teams.
Desirable:
- Knowledge and experience with setup/configuration of intrusion prevention/detection solutions ie: Snort, Suricata, Sourcefire.
- Knowledge and experience of integration with security information and event management (preference for HP Arcsight).
Knowledge on security applications (setup/configuration/integration within network and with SIEM):
- Endpoint monitoring/forensics.
- Security netflow analysis solution (Lancope StealthWatch as example).
- Security big data analytics (SOLR, Kafka, Hadoop platform, Syslog-ng).
- Sandboxing (integration bro-suricata, api to third party).
- Vulnerability Management, Behavioural Monitoring.
Please get in touch for further details on this excellent contract opportunity.