Security Analyst

**Location**:
Brussels, Belgium

**Security Clearance**:
EU Secret

**Introduction**:
The Security Analyst aims at identifying areas where information system changes are needed to support business plans and to monitor the impact in terms of change management. This service contributes to the general functional requirements of the business organization in the area of cyber security solutions. It encompasses analysis of the business needs and their translations into ICT solutions and ensures technological watch to inform stakeholders of emergent technologies.

Service activities also include proposal and implementation of necessary security updates, advisory, support, information, and delivery of training and security awareness. The service providers are expected to take direct action on all or part of a network or system and to act as the main interface between business and technical units, and they are recognized as ICT technical security experts by peers.

The Security Analysts also provide expert support to Incident Handlers and carry out in-depths investigations such as computer or network forensics, log correlation and analysis, threat, vulnerability and attack path assessment, behavioural malware analysis, etc.

**Skills, knowledge, experience required**:

- Minimum 2 years’ experience in:

- Drafting security policies;
- Drafting and reviewing security plans and security operating procedures (SecOps);
- Implementing ISO 27001/27002 for a specific architecture/infrastructure;
- At least 1 certification among the following:

- GCED (GIAC Certified Enterprise Defender);
- GPPA (GIAC Certified Perimeter Protection Analyst);
- GCWN (GIAC Certified Windows Security Administrator);
- GCUX (GIAC Certified UNIX Security Administrator);
- GCCC (GIAC Certified Critical Controls);
- SSCP ((ISC)2 Certified Systems Security Practitioner);
- CAP ((ISC)2 Certified Authorization Professional);
- CISSP (Certified Information Systems Security Professional);
- CISA (Certified Information Systems Auditor);
- CISM (Certified Information Security Manager);
- GSEC (GIAC Certified Security Essentials);
- ECSA (EC-Council Certified Security Analyst);
- SCPO (SABSA Certified Security Operations and Service Management Practitioner);
- ISO 27001 Lead implementer;
- ISO 27001 Lead Auditor;
- ISO 27005 Risk Manager;
- Minimum 2 years’ experience with any of the following risk management/assessment methodologies:

- EBIOS;
- CRAMM;
- PILAR;
- Minimum 3 years’ experience with:

- ISO 27000 series standards;
- Networking (TCP/IP, SNMP, DNS, Syslog-ng, etc.);
- Minimum 2 years’ experience with:

- MS Windows operating systems;
- Linux (Red Hat, Debian).

**Desirable**:

- At least 1 certification in the field of incident handling:

- GCIH (GIAC Certified Incident Handler);
- GCIA (GIAC Certified Intrusion Analyst);
- ECIH (EC-Council Certified Incident Handler);
- CSIH (SEI Certified Computer Security Incident Handler);
- SCMO (SABSA Certified Security Operations and Service Management Specialist);
- Minimum 1 year of experience with STIX (Structured Threat Information Expression) with a particular focus on the following related standards:

- CybOX (cyber observables);
- CAPEC (attack patterns);
- MAEC (malware);
- TAXII (threat information exchange);
- Minimum 2 years’ experience with:

- ISO 27001 implementation;
- Storage (NetApp);
- Cisco Internetwork Operating System (IOS);
- VMware vSphere and ESXi.

**Duties/role**:

- Contributing to the preparation of the Organization’s business plan;
- Identifying areas for improvement in business processes providing possible cyber security solutions compliant with the ICT strategy;
- Building requirements, specifications, business processes, and business case related to the proposed solutions;
- Analysing required information and documents;
- Making recommendations to Senior Management;
- Ensuring that change management processes are implemented;
- Ensuring the reliability, confidentiality, security, and integrity of information systems;
- Elaborating and translating the security monitoring policy into monitoring rules;
- Providing advice on how to optimize the use of existing tools and systems;
- Raising awareness of information technology innovations and potential value to a business;
- Making recommendations for the development and implementation of a business project or technological solution;
- Participating in:

- Definition of general project specifications;
- Assessment and choice of cyber security solutions;
- Ensuring security and appropriate use of cyber security resources;
- Performing risk assessments (evaluating risks, threats, and consequences);
- Drafting and reviewing security plans and SecOps;
- Developing or reviewing security configurations and baselines;
- Contributing to definition and implementation of the security policy;
- Implementing security policy technical or operational controls at an operational level including in products and systems;
- Securing ha