Cyber Physical Systems Security Expert to develop hiring assessment content

---

---

We are seeking individuals with advanced expertise in Cyber Physical Systems Security (CyPSS). We expect these individuals to have knowledge of cybersecurity and operational technology to monitor and reduce risk to industrial processes deployed in Critical Infrastructure (e.g., water, power, transportation). They should also have expertise in cyber physical systems to mitigate risks and detect threats to the overall security architecture of the system and can apply functional expertise of industrial control operations and applicable regulations of a critical infrastructure sector to understand risks and opportunities. Subject Matter Experts (SMEs) will be expected to possess extensive knowledge and experience in CyPSS (ideally, 15+ years of experience). The type of technical skills that we are looking for include: • Industrial Internet of Things (IOT): Applies knowledge of the foundations of architectures, applications, security, and protocols that underpin the Industrial Internet of Things. Actively monitors and supports the design/build/configure/operate/maintain cycle of interconnected systems. • Digital Forensics Incident Response/Threat Hunt (DFIR): Applies DFIR expertise to identify and respond to cybersecurity incidents. Applies control systems expertise to maintain safety and reliability during incident responses. Identifies and prioritizes risks and makes recommendations for mitigation or remediation. Understands the current threat landscape and transforms cyber threat intelligence into actionable recommendations. Utilizes DFIR to create cyber threat intelligence. • Network Architecture: Identifies how to segment the operational network from the enterprise network and determines whether networks are segmented correctly. Applies knowledge of OT and IT protocols and domain expertise to detect anomalous network traffic. Establishes a baseline of OT network traffic. Applies network data management and documentation best practices to share knowledge and expertise across the agency. Applies knowledge of standard network monitoring tool best practices to advise on deployments and analyze traffic and network data. Builds, modifies, and/or assesses data parsers and protocol dissectors. • Controller Expertise: Applies knowledge of control systems programming and configuration management. Understands the relationship between controllers and the physical processes they control. Experienced in working with and integrating varied control system manufacturers. Knowledgeable in patch management and its complexities in an operational environment. Qualifications: • 15+ years of experience in Cyber Physical Systems Security (CyPSS). • Excellent communication skills, both oral and written, required. Must be able to convey technical information effectively to diverse audiences. • Advanced degrees and/or publications in relevant fields preferred. • U.S. citizenship required. After applying to this job posting, selected applicants will be invited to a 30-minute interview. Candidates who pass the initial interview will then receive their first paid assignment, which involves taking a remotely proctored virtual test on CyPSS topics. Your performance on this test, along with feedback on the content, will determine your eligibility for subsequent assignments. These follow-up tasks may include contributing to the development of hiring assessment content or pilot testing the assessments. Please note that this position is not full-time; rather, it consists of a few assignments spread throughout the year, providing approximately 2-15 hours of work per month, with some months possibly having no tasks available.

Keyword: Cybersecurity

Price: $100.0

Digital Forensics Embedded System Internet of Things Network Architecture