Job Title : Cyber Security Engineer

Location: Luxembourg

Languages: English

Contract Duration:6 Months+ Possible of extension

Work Mode: 100%(Full Time and Hybrid)

ONLY EU CITIZENS ARE PREFERED

Job description

The primary objective is to ensure that external connections are not increasing the overall security risk to Communication and Information System (CIS) of EU.

ISA = (Interconnection Security Agreement) authorization framework for external connections.

The tasks are :

1) ISA service management

This objective includes the handling of the ISA process. This entails:

• analysis of requests from different stakeholders (internal and external)
• processing of the requests accordingly with the defined procedures and rules
• reviewing and assessment of EC CIS IT Security Plans (ITSP)
• handling of non-compliances

2)Security inspections in the context of ISA

This objective includes all the tasks required to perform security inspections to external partners, contractors and EC CIS.

These security inspections are in the context of external connections and have the goal to assess compliance with defined security measures. This includes the following activities:

• Planning
• Executing
• Reporting and follow up

3)Service improvement

This objective includes active participation in initiatives with the objective to improve the quality of the service provided. This includes:

• Alignment of ISA service with Commissions policies and standards
• Alignment of ISA service with new developments in information security
• Contribution to the development of related security standards, baselines and guidelines

4) Documentation and statistics

• The ISA related documentation and statistics shall be kept up-to-date.
• This objective includes the proper production and maintenance of ISA related documentation and ISA related KPI and statistics.

Technical skills

Experience:

• Post-secondary education of at least 2 years in ICT or other related areas, e.g. computer science, cybersecurity, information technology, computer/software engineering, information systems, computer forensics science.
• 6 years in IT
• 3 years in cybersecurity

Knowledge and skills

Following skills and knowledge are required for the performance of the above listed tasks:

• In-depth knowledge of network communications especially from ISO network layer 2 to layer 5 with a specific focus on network security protocols (like MACSec, IPSec TLS/SSL,…)
• Excellent knowledge of information security principles, internationally recognised standards in the field IT security and corresponding implementations
• (Experience in the EU Commission security policy would an asset);
• Good knowledge of fast changing technologies used in the field of workplace and network security solutions/technologies
• Knowledge of IT Security Compliance Management
• Ability to learn efficiently and fast
• Ability to apply high quality standards
• Very good communication skills, adaptable to audiences ranging from senior management to technology specialists, delivered business to technical presentation, in English language
• Strong analytical and problem-solving skills
• Capability to write clear and structured technical documents in English
• Ability to participate in technical meetings and good communication skills
• The ability to work in a proactive and independent manner, with a focus on priorities, communication and decision-making capacities.

The most important skills are :

• Knowledge or experience in ISA.
• Knowledge or experience in inspections for ISA.
• Knowledge of the OSI model :
• Knowledge of the layers 2 to 5
• Knowledge of the security protocols of the layers 2 to 5, like MAC Sec, IPSec TSL/SSL and others
• This permit to verify that the protocols are respected.
• It's necessary to have administrative skill ( for ISA ) and technical skill ( for OSI ).

Required clearance : Clearance to access to EU SECRET information or ability to get the clearance.