Description

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

Supporting NATO throughout all its geographical locations, the NCI Agency is looking for a Senior Technician (Device Compliance and Vulnerability Management), joining the journey of NATO’s modernisation of IT services, through leveraging the public cloud (Microsoft Azure, M365 and Amazon AWS), delivering managed, protected, security‐centric and reliable IT Services.

NCI Agency – Cloud Operations Team

The NATO Communications and Information Agency (NCI Agency) is dedicated to supporting NATO's strategic objectives, including the ambitious NATO 2030 agenda. As part of this commitment, we are spearheading the modernization and digital transformation of NATO’s IT services. Our focus is on leveraging public cloud technologies like Microsoft 365 and Intune, incorporating a security‐by‐design approach, and ensuring a seamless transition to a modern, collaborative workplace environment.

To achieve these goals, we are building a Cloud Operations team under the Cloud Center of Excellence, operating under the NATO Enterprise Cloud Operating Model (NECOM). The NECOM framework provides a standardized approach for cloud service management, ensuring interoperability, scalability, and security across NATO's IT infrastructure. The Cloud Center of Excellence will serve as a hub for best practices, innovation, and expertise, driving the adoption and optimization of cloud technologies within NATO. This team will play a crucial role in our journey towards providing managed, protected, and reliable End User Services.

Embracing the latest technological advancements, this initiative will foster innovation and ensure NATO remains at the cutting edge of IT capabilities. By continuously evolving and integrating newtechnologies, we aim to enhance operational efficiency and readiness for future challenges. This remote position offers an exciting opportunity to be at the forefront of NATO's technological evolution and contribute to the security and efficiency of our operations.

NCI Agency – Cloud Centre of Excellence (CCoE)

The Cloud Centre of Excellence (CCoE) within the NCI Agency is focused on driving successful cloud adoption and maximizing the potential of cloud technologies across the organization. It serves as a central governing body, promoting best practices, enabling knowledge sharing, and ensuring alignment between business objectives and cloud initiatives. The CCoE supports various cloud‐ based solutions, ensuring their effective and efficient implementation and management. By fostering a culture of continuous improvement and innovation, the CCoE helps the NCI Agency leverage cloud technologies to enhance operational efficiency, scalability, and agility The NCI Agency is seeking a highly skilled Senior Technician (Device Compliance and Vulnerability Management) to join our IT team. This role focuses on monitoring, enforcing, and supporting users to ensure that devices remain compliant and secure within the Microsoft 365, Intune, and Windows Defender environments. You will play a crucial role in identifying, addressing, and mitigating vulnerabilities and security‐related issues, ensuring that our infrastructure adheres to the highest standards of security and compliance. The ideal candidate will have extensive experience with M365, Intune, Windows Defender, and compliance management, as well as strong problem‐solving skills and a commitment to continuous improvement.

In this role, your primary responsibilities will include monitoring and assessing vulnerabilitieswithin the M365, Intune, and Windows Defender environments, using threat intelligence to identify potential security risks, and implementing and managing vulnerability scanning and assessment tools. You will also be responsible for developing and enforcing compliance policies, ensuring devices adhere to organizational security standards and regulatory requirements, and addressing any deviations promptly.

You will assist users in addressing security‐related issues and ensuring compliance, coordinating with IT teams to implement security patches and updates, and configuring and managing device compliance policies using Microsoft Intune. Additionally, you will develop and maintain automation scripts using PowerShell and implement automated workflows using Power Automate to streamline compliance and vulnerability management tasks.

Furthermore, you will generate and analyze reports on compliance status, vulnerabilities, and security incidents, providing insights and recommendations for improving the security posture of the organization. Collaboration with other IT teams to ensure cohesive security and compliance strategies, as well as continuous improvement of security and complianceprocesses, are key aspects of this role.

If you are a motivated specialist with a passion for security and compliance, and possess strong problem‐solving skills, we invite you to apply and join our dynamic team, contributing to the secure and efficient operation of our IT services.

Role Duties and Responsibilities

Vulnerability Monitoring and Management:

Monitor and assess vulnerabilities within the M365, Intune, and Windows Defender environments.
Use threat intelligence to identify potential security risks.
Implement and manage vulnerability scanning and assessment tools.
Report and prioritize vulnerabilities based on risk and impact.

Compliance Enforcement:

Develop and enforce compliance policies for devices managed through Intune.
Ensure devices adhere to organizational security standards and regulatory requirements.
Monitor compliance status and address deviations promptly.
Implement and manage compliance policies, including DLP and conditional access.

Security Issue Resolution:

Follow up on security incidents and vulnerabilities, ensuring timely resolution.
Assist users in addressing security‐related issues and ensuring compliance.
Provide guidance and support for security best practices.
Coordinate with IT teams to implement security patches and updates.

Device Configuration Management:

Configure and manage device compliance policies using Microsoft Intune.
Ensure secure configurations and settings are applied across all managed devices.
Regularly review and update device configuration policies.
Troubleshoot configuration issues and provide technical support.

Windows Defender Management:

Configure and manage Windows Defender settings and policies.
Monitor threat analytics and respond to security alerts.
Implement Advanced Threat Protection (ATP) policies.
Conduct regular security assessments and vulnerability scans.

Automation and Scripting:

Develop and maintain automation scripts using PowerShell to streamline compliance and vulnerability management tasks.
Implement automated workflows using Power Automate for reporting and monitoring.
Create automated solutions for compliance enforcement and vulnerability remediation.
Maintain and update existing automation scripts.

Reporting and Analysis:

Generate and analyze reports on compliance status, vulnerabilities, and security incidents.
Provide insights and recommendations for improving security posture.
Use reporting tools to track key metrics and trends.
Present findings to stakeholders and senior management.

Collaboration with IT Teams:

Work closely with other IT teams to ensure cohesive security and compliance strategies.
Collaborate on cross‐functional projects and initiatives.
Provide expertise and support for security‐related projects.
Participate in security and compliance forums and discussions.

Continuous Improvement:

Stay up‐to‐date with the latest developments in M365, Intune, Windows Defender, and compliance management.
Continuously improve security and compliance processes.
Proactively identify potential vulnerabilities and implement preventive measures.

Essential Skills and Experience

Vulnerability Management:

Advanced knowledge of vulnerability scanning and assessment tools.
Experience with threat intelligence and risk assessment.
Ability to prioritize and remediate vulnerabilities.
Proficiency in reporting and tracking vulnerabilities.

Compliance Management:

Strong understanding of compliance standards and regulatory requirements.
Experience with developing and enforcing compliance policies.
Proficiency in monitoring and addressing compliance deviations.
Knowledge of data loss prevention (DLP) and conditional access policies.

Microsoft Intune Proficiency:

Advanced knowledge of Microsoft Intune for device management.
Experience configuring device compliance policies and managing device profiles.
Ability to troubleshoot and resolve Intune‐related issues.
Knowledge of secure device configurations and settings.

Windows Defender Management:

Expertise in configuring and managing Windows Defender settings and policies.
Experience with Advanced Threat Protection (ATP) policies.
Proficiency in monitoring threat analytics and responding to alerts.
Ability to conduct security assessments and vulnerability scans.

PowerShell Scripting:

Proficient in writing and executing PowerShell scripts for automation.
Ability to develop and maintain scripts for compliance and vulnerability management.
Experience with automating reporting and monitoring tasks.
Knowledge of script debugging and error handling.

Security Monitoring and Reporting:

Proficient in using security monitoring tools and SIEM solutions.
Ability to generate and analyze security reports.
Experience with tracking key metrics and trends.
Knowledge of presenting findings to stakeholders.

Automation and Workflows:

Expertise in creating automated workflows using Power Automate.
Ability to streamline compliance and vulnerability management processes.
Experience with developing automated solutions for reporting and monitoring.
Knowledge of maintaining and updating automation tools.

Collaboration and Communication:

Excellent verbal and written communication skills.
Ability to work effectively with cross‐functional teams.
Proficiency in documenting technical processes and solutions.
Experience in providing technical support and guidance.

Continuous Improvement:

Commitment to staying current with security and compliance developments.
Proactive in implementing new security measures and improvements.
Participation in security and compliance forums and training.
Ability to propose and implement continuous improvement initiatives.

Team Collaboration:

Ability to work effectively as part of a team and share knowledge and resources.
Willingness to collaborate with colleagues to solve complex issues.

Others:

They have strong customer relationship skills, including negotiating complex and sensitive situations under pressure.
They must have the nationality of one of the NATO nations.

Language Proficiency

Full proficiency in the English language. French language proficiency is of advantage.

Working Location

Remote

Working Policy

Off-Site
They are required to travel for on‐boarding and off‐boarding to an NCI Agency location as part of this role, for periods not exceeding 1 week.

Travel

Some travel to other NATO sites may be required

Contract Duration

Jul 2024 – Dec 2024

Security Clearance

Valid National or NATO Secret personal security clearance

Remote Scouter

More Similar Roles...

Want more remote roles like this one sent to you?