Cyber Defence Expert - Banking, Detection, Testing, Simulation, Hybrid

Role: Cyber Defence - Detection Use Case Testing & Adversary Simulation Expert

Contracting Authority: Finance

Contract Length: 12 Months

Location: Brussels, Belgium

Pay Rate: Competitive day rate

An exciting opportunity has become available with our prestigious client who is a prominent government department. The client is seeking an experienced Cyber Defence - Detection Use Case Testing & Adversary Simulation Expert to join their welcoming team.

The Cyber Defence - Detection Use Case Testing & Adversary Simulation Expert Role:

You will carry the following responsibilities:
Detection Use Case Testing

Provide assurance that Use Cases are detecting what they are built to detectFocus on the missing detection of offensive actions for which there is, supposedly, detection logic in placePlan and perform limited adversary simulation of identified missing detectionsTrack discovered vulnerabilities, triage remediation tasks, and assign to system ownersWork closely with the Red/Blue Team to test the efficacy of existing alerts and help create new detections

Continuous Adversary Simulation

Execute threat analysis: Identify impacted assets, develop threat scenarios, define a ‘kill chain’, i.e. step-by-step analysis of the attack, prioritize threatsIdentify existing or missing counter-measures (controls & reaction plans) i.e. mapping to bank specificity: enterprise architecture, vulnerability status, latest incidents and related opportunities for internal control improvementTo execute adversary simulation of attacks on identified missing counter-measures

What the Cyber Defence - Detection Use Case Testing & Adversary Simulation Expert Will Need:

• At least 5 years of experience in information security, penetration testing, red team
• Fluent on Englidh or Dutch with good command of French
• Strong knowledge of IT security technology and processes (secure networking, web infrastructure, system security, perimeter protection, etc.)
• Experience with security incident management in SOC, CSIRT or IT environments 
• Experience with (security) logging, monitoring or intrusion detection
• Experience in security testing of web application, mobile applications, APIs, cloud hosted application
• Experience with penetration testing tools such as Metasploit, CORE Impact, or Kali Linux
• Ability to write custom scripts to automate tasks related to finding new vulnerabilities
• Must demonstrate knowledge of MITRE s ATT&CK framework
• Knowledge of various IDS/IPS, NetFlow, and protocol collection and analysis tools such as Snort, Suricata, Bro, Argus, SiLK, tcpdump, and WireShark
• Knowledge of log aggregation, SIEM solutions and Digital Analytics Platforms such as Splunk, ELK
• Experience with programming and scripting languages: most notably Perl, Ruby, and Python
• Knowledge of Web Application Security Development. (OWASP)
• Knowledge of popular cryptography algorithms and protocols: AES, RSA, MD5, SHA, Kerberos, SSL/TLS, Diffie Hellman
• Knowledge of some NIDS/NIPS or HIDS/HIPS tools

Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply.

Interviews will take place next week, so please apply immediately to be considered for this exciting contract role or call Bangura Solutions to discuss this role further.