Role ID –C004920
Role Background
The Cyber Security Officer is responsible for designing, implementing, and
maintaining cyber security solutions that protect the organization's information
systems and infrastructure. The role supports secure system development, risk
management, security operations, compliance activities, and incident response while
leading a small Cyber Security and COMSEC team. The position works closely with
stakeholders and the NATO Cyber Security Centre (NCSC) to ensure systems comply
with NATO security policies and operational requirements.
Role Duties and Responsibilities
Design, develop, implement, test, and maintain secure information systems
throughout the system development lifecycle.
Develop cyber security solutions that meet operational and business requirements.
Work with stakeholders to translate business and functional requirements into secure
technical solutions.
Apply and maintain security controls in accordance with organizational policies and
local risk assessments.
Perform risk assessments for information systems and identify security risks.
Recommend security improvements and mitigation strategies for identified risks.
Define and maintain secure system configurations that comply with approved
architectures.
Support the investigation of cyber security incidents, suspected attacks, and security
breaches.
Lead and supervise a team of 3–4 Cyber Security and COMSEC personnel.
Manage Cyber Security operations as the Cyber Security Section Head.
Coordinate cyber security activities with the NATO Cyber Security Centre (NCSC).
Oversee boundary protection, data loss prevention, endpoint protection, and
enterprise anti-malware solutions.
Plan, schedule, coordinate, and facilitate cyber security audits and inspections.
Manage corrective actions resulting from security audits and inspections.
Supervise security monitoring, testing, evaluation, and accreditation activities for
information systems.
Plan and implement cyber security services to support Agency business units.
Deputize for senior staff when required.
Perform additional duties as assigned.
Support physical tasks, including lifting equipment up to 25 lbs when required.
Essential Skills, Experience and Certifications
Strong knowledge of cyber security principles, system security, and security
architecture.
Windows Server security hardening and compliance management.
Network security, firewall technologies, VPNs, intrusion detection, and forensic
tools.
Security governance, risk management, and vulnerability management.
Security incident response and investigation.
Data Loss Prevention (DLP) and endpoint security management.
Security audit coordination and compliance management.
Server, network, and storage virtualization technologies.
Public Key Infrastructure (PKI).
Cloud technology fundamentals.
Strong analytical and problem-solving skills.
Ability to work independently and manage multiple priorities.