Cyber Watch Officer - Open Source
- Job Title
- Cyber Watch Officer - Open Source
- Job ID
As a Cyber Watch Officer, you will serve as a critical part of our Cyber Analysis team, tasked with providing support for initial incident triage, as well as subject matter expertise for cyber security incident investigations. This person will also support ongoing risk assessment activities for grid and critical infrastructure issues. The Watch Officer – Open Source Intelligence will assist with security outreach and readiness reviews with critical infrastructure asset owners and operators. Our ideal candidate will be familiar with the relationships between the Electricity Sub-sector in North America and federal agencies, including the Department of Homeland Security (DHS), the Department of Energy (DOE), the Department of Defense (DOD), the Federal Energy Regulatory Commission (FERC), and the Federal Bureau of Investigation (FBI).
This critical position will have a great deal of organizational influence as we plan to double in size within the next few years.
Duties and Responsibilities:
- Facilitate reporting, outreach, incident reporting, and information sharing.
- Manage incident triage and coordination with analysis and detection sections to identify and analyze technology and cyber impacts to IT assets, network infrastructure (LAN/WAN), including applying security fixes and ensuring proper incident management and coordination.
- Manage incident triage and coordination with analysis and detection sections to identify and analyze physical threats to utility assets and to ensure proper incident management and coordination.
- Draft and prepare various reports, threat executive summaries, maintain awareness of workflow, and contribute to Senior Watch Officer end of shift reports
- Coordinate continuity of operations for emergency relocation of Watch Operations to include uninterrupted telecommunications, computer systems, and cyber security of networks.
- Analyze physical and cyber threats, vulnerabilities, and provide timely and actionable information; ensure accurate and timely sharing of all significant cyber incidents to leadership and stakeholders.
- Share cyber information with security partners across multiple sectors to achieve situational awareness; respond to cyber threats to minimize incidents and support recovery efforts; build and maintain operational relationships with trusted international partners
- Via publicly available as well as proprietary tools, monitor events affecting national and international security and develop multiple types of products to facilitate situational awareness
The successful candidate will have:
- A Bachelor’s Degree in a related technical field and related technical experience. An additional 4 years of experience may be substituted in lieu of a degree.
- Active Secret security clearance is desired. In addition, selected candidate must be able to obtain and maintain a favorably adjudicated Secret background investigation for continued employment.
- Ability to understand and learn technical specifications, system requirements and other application design information as needed.
- Basic understanding of Network Security or Physical Security is required.
- Experience working with and conducting analysis of all-source intelligence products.
- Position located in Washington, D.C.
- Security Clearance preferred, but not required. If not currently held, selected candidate must be able to obtain and maintain a favorably adjudicated background investigation for continued employment.
- Background check will be conducted prior to employment.
- In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.
- Travel necessary: Passport required for North American travel.
Blackmere Consulting is an equal opportunity employer (EOE/AA/M/F/Vets/Disabled/Protected Statuses)