Job Description :
One of my contacts in my network requires a computer engineer/computer technician to serve as an engineer/technician in the cyber security program for an 8+ month contract in Scranton, PA. This is a hands on role. Must be authorized to work in the US for any employer to be considered.
Please review this and if interested email your updated resume in a word document with your contact details, current location, availability and hourly pay rate expectations to
What person is to do:
Cyber Incident Response for Kiosk Detections and PMD Detections per Procedure
Conduct Triage on Detections
Use Common Malware Analysis Tools to Determine Maliciousness
Determine Impacts of Malware on Process
Write up Malware Report (either false positives or actual events) in normal language
Participate in Actual Events and Drills
Cyber Vulnerability Review
Monitor Lists and Boards for Cyber Security Vulnerabilities
Initiate Actions if necessary to Evaluate here
Evaluate Vulnerabilities Per NSEP-QA-511 and LS-115
Determine Actions to Mitigate Vulnerabilities with input from SSES Personnel
CSAT Support - Questions as required by CSAT, generally on how industrial systems and protocols work
PMD Network Support
Anti-Virus, Network Switches, Signature Updates per procedure
Investigate Problems with Equipment and Fix
Ensure Improvements to PMD are Justifiable and Cost Effective
Document PMD Network
PMD Program Support
Respond to Action Requests by SSES personnel
Evaluate and Classify PMD per procedure
Harden and Provision Laptops on Request
Update Kiosk Definitions (I'm assuming Scotty will want to give this to anyone new)
Monitor CYBERTRK Database for Issues
Replace RFID Tags if they Die
Update Program Documents on New Information or Regulatory Changes (require approval from SSES personnel)
MOD Support
Answer Questions as Required by Personnel
Provide Technical Recommendations on Design and Implementation
Cyber Security Engineering
Give input on Technical Security Solutions for Systems
Tie all Technical Solutions back to NEI Program Requirements
Determine Measures to Demonstrate Compliance
Document Per Program Requirements
Skills Required:
Network Knowledge
Basic – Networking Theory Classes, IP addressing, Subnetting, TCP/UDP details, use of tools like Wireshark and NMAP
Advanced – Some Cisco Experience, knowledge of device hardening, Palo Alto Expertise, Firewall Theory (packet filtering, application layer monitoring, logging)
Master – 10+ Years of Experience with Cisco, Palo Alto Certifications, Security Monitoring Experience involving Cisco and Palo Alto
Windows Knowledge
Basic – Configuration of Local Policies (GPO and Security), Basic Computer Management (services, ports, installed software)
Advanced – Some Knowledge of Domain Policies and Hierarchy, Prior Information Systems auditing experience
Master – 10+ years of Experience working domain architecture…
Industrial Control System Security Knowledge
Basic – Insecure by design principles, Protocols used, Characteristics of systems
Advanced –
Master – 10+ years of Experience in ICS Security
Regulatory Knowledge
Basic – Knowledge of industry activities in ICS, some NERC CIP expertise
Advanced – Prior NEI experience, including some 13-10
Master – Led an NEI or NERC CIP effort
Professional Skills
Basic – Can communicate ideas effectively via email and in person, basic use of email and office apps
Advanced – Can create work instructions to communicate technical steps to lesser qualified individuals, creates clear and concise drawings and procedures for others designs, identifies impacts of changes without prompting
Master – Designs and implements technical solutions, along with creating means of effectively maintaining those solutions