Deadline Date: Thu 18th Feb 2021
Equivalent NATO Grade: B/87
Work Location: Mons, BE
Full time on-site: Yes
Required Start Date: 31-MAY-2021
Total Scope of the request (hours): 418
Specific Working Conditions: Normal Office Conditions
Required Security Clearance: NATO Secret
Engineer (Forensics amp; Malware Analysis)
The contracted individual must be able to perform effectively and efficiently with minimal supervision. The contracted individual will be asked to support the development of one or more technical deliverables and/or provide exercise support in execution of projects undertaken within the 2021 calendar year. Within the Cyber Security Operations Branch and reporting to the Incident Analysis and Response Section Head, the duties of the individual mainly focus on:
- Provide technical and expert support for to the 24/7 Cyber Security Incident Analysis and Responses process.
- Execute both static and dynamic Malware analysis and capture the results in a technical analysis report.
- Execute Digital Forensic Analysis in the form of network, system and memory forensics and capture the results in a technical Analysis report.
- Identification and Sharing of technical Indicators of Compromise with the other NATO stakeholders, the NATO nations and our different partners, in accordance with our sharing agreements.
- Develop tools, scripting, automation and integrations to automate activities as much as possible, mostly using Python and PowerShell
- Experiment and conduct research in Malware Analysis and Forensic areas;
- Propose additional detection content (Network IDS rules, SIEM content, endpoint scanning, etc.)
- Participate in, or support a Cyber Security Response Team designated to provide Cyber Security Incident Response happening on one or multiple physical locations, including NATO Alliance Operations and Missions.
- Support the production of Standard Operating Procedures covering all aspects of Digital Forensics and Malware Analysis.
Requirements
- Required Security Clearance: NATO Secret
- Contracted individual will hold University degree at nationally recognised/certified University in technical subject with substantial Information Technology (IT) content and 3 years post related experience. Lack of university/college degree may be compensated by demonstration of at least 8 years extensive and progressive expertise in duties related to function of SOW.
- 3+ years demonstrable experience in conducting Digital Forensics and/or Malware Reverse-Engineering or Analysis
- Very good understanding of inner working of modern Operating Systems on Windows and Linux environment
- Very good understanding of communication mechanisms on modern internet-facing systems: REST, SOAP, AJAX, MIME, API calls,
- Good understanding of modern scripting languages: Python, PowerShell, JavaScript
- Good understanding of TCP/IP stack up to the Application Layer
- Ability to work independently (while having support of team), taking initiatives, identifying areas of potential improvement and taking ownership
Benefits
Required Security Clearance: NATO Secret