Cybersecurity Rapid Response Experts: Senior Level
ONSITE: Washington DC
Roles:
Cybersecurity expert provides technical guidance for the subject matter activities, technical reviews and preparation of deliverables. S/He provides technical lead and support to host country’s beneficiary entities. S/He designs and develops assessments, provides technical assistance on legal and regulatory framework development, designs and delivers capacity building activities, manages engagement and business strategy on cybersecurity for critical infrastructure and threat intelligence with host government agencies, providing technical expertise and guidance on innovative solutions to cyber and digital infrastructure challenges.
The candidate will provide leadership or support across the following task areas to achieve the program objectives:
- Deployment of Rapid Response and Recovery Teams
- Establish and/or Improve Regional, National, and/or Sectoral Information Sharing Platforms
- Bolster the Capabilities of Host Government Key Cyber Personnel in E&E
- Conducts technical analyses for the subject matter activities, and preparation of
- deliverables;
- Provides guidance and oversees the rapid response component and the rapid response
- team members;
- Provides technical guidance and direct support on subject matters with host country
- beneficiary entities;
- Build and maintain relationships with strategic partners and host country government agencies.
The Senior Cybersecurity Expert will support the following objectives:
- Strengthen capabilities of host government agencies and critical infrastructure operators to identify, protect, detect, respond to, and recover from cyberattacks;
- Increase the capacity of host government civilian agencies and critical infrastructure operators to procure, integrate, and maintain hardware and software solutions that improve cyber defense of critical assets and systems;
- Improve information sharing of threats and incidents, through established networks and formal/informal procedures, between national and industry counterparts throughout the region, EU, and the United States;
- Bolster the capabilities of cyber personnel in targeted host country civilian agencies to perform effective response and recovery from cybersecurity incidents, including the implementation of protection measures as part of ex-post remediation measures; and
- Support the establishment of mechanisms and policies to attract, train, and retain cybersecurity personnel with civilian host government agencies and critical infrastructure operators.
Required Professional Experience:
- 10 years progressive experience in cybersecurity field (must be demonstrated in resume)
- Demonstrated experience in various areas of cybersecurity and incident response;
- Demonstrated experience in managing stakeholder relationships at senior levels of government.
Required Skills & Abilities:
- Ability to review and analyze log data to detect attacks or anomalous behavior
- Experience creating incident reports detailing specific incident actions and recommended remediations
- Firsthand knowledge of the MITRA ATT&CK framework and applying it to IR situations
- Forensics experience to reconstruct adversarial actions
- Experience creating after action reports and briefing non-technical audiences pertaining to incident response activities
- Progress experience working as a SOC analyst performing IR
- Experience with penetration testing
- Knowledge and experience applying Cyber Threat Intelligence to prevent incidents and/or recover from incidents
- Demonstrated response to and mitigation of cybersecurity incidents to host country’s entities;
- Rapidly deploy and respond to cyber incidents;
- Analyze the incidents, gathers evidence, determines and implement the mitigation measures;
- Build and maintain relationships with strategic partners and host country government agencies;
- Proficiency in cybersecurity tools, techniques, and frameworks used for incident detection, analysis and response;
- Strong understanding of networking protocols, operating systems, and common security vulnerabilities;
- Previous experience in handling security incidents, ranging from identifying and analyzing incidents to containing and mitigating their impacts;
- Familiarity with digital forensics techniques to gather evidence reconstruct incidents and support investigations
Position Requirements:
- Advanced Degree in computer science, information security, cybersecurity, or a related field (a BS with 15 years of professional experience in in lieu of advanced degree will also be considered);
- Certified Information Systems Security Professional (CISSP).
- Incident response, forensic certifications, or CEH certifications
- US Citizenship
Nice to have skills:
- Incident Response or Forensics certifications
- Strong knowledge of Critical Infrastructure sectors
- Hands on Forensics experience
- Experience with USAID / E&E region
SDV INTERNATIONAL is an essential business. The health and safety of our team members is our highest priority, so we are taking a science driven approach to slowly welcome and transition some of our workforce back to the office with many safety protocols in place. This may include periodic site visits for teleworkers. We continue to monitor and assess before we confirm the return of each wave, paying specific attention to geography-specific trends.
Diversity creates a healthier atmosphere: SDV INTERNATIONAL is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
SDV INTERNATIONAL is a drug-free workplace. Candidates may be required to pass a drug test before beginning employment.
Job Type: Full-time
Pay: $133,000.00 - $150,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Health insurance
- Life insurance
- Paid time off
- Relocation assistance
- Vision insurance
Experience level:
Schedule:
- 8 hour shift
- Monday to Friday
Application Question(s):
- This position requires US citizenship. Do you meet this requirement?
- Discuss your knowledge of MITRA ATT&CK framework and applying to IR situations.
- List all Incident response, forensic certifications, or CEH certifications.
Education:
Experience:
- Progressive Cybersecurity: 10 years (Required)
- MITRA ATT&CK: 5 years (Required)
- Incident Response: 5 years (Required)
- Applying Cyber Threat Intelligence in response to incidents: 5 years (Required)
License/Certification:
- CISSP (Required)
- CEH or Incident Response, Forensics Certifications (Required)
Ability to Commute:
- Washington, DC (Required)
Ability to Relocate:
- Washington, DC: Relocate before starting work (Required)
Work Location: In person