Description
ROLE IS INSIDE IR35
Cyber Experimentation Lead
Parker Shaw are working with a top UK Government authority who are seeking an expert in Cyber Security to join them on a contract basis. You will be working on development of robust methods to detect anomalous or malicious traffic beyond the scope of the traditional enterprise network.
As the cyber experimentation lead key task will be:
- The design, build and maintenance of physical and virtual communication test-beds for experimentation and training
- The co-ordination and delivery of training and experimentation sprints utilising the test beds
To achieve these key tasks you will also need to:
- Develop RMADS where appropriate approval from accreditors and SCIDA authorities,
- Work with safety and security constraints,
- Procure equipment through approved channels,
- Co-ordinate with the project team to deliver analytics sprints.
Other task may include:
- Technical validation of analytics demonstrators.
- Maintain technical assets registers of project own software
- Support and assurance of industry supplied research
Minimum Requirement:
One or more of the following is Essential:
- Experience in the design and build of enterprise network sensors and associated analytics in constrained environments (low size/weight/power/bandwidth)
- Experience in design and build of simple networks using non-IP based communication protocols, (eg databuses and/or RF datalinks such as Mil-StD-1530, CANBus, firewire, GVA, link-16 or others)
- Experience in the design and set-up of virtualised networks simulating above systems to enable readily available training networks that are more readily accessible outside the laboratory
Essential skills that also need to be demonstrated:
- Experience in the design of exercises or training packages using physical or virtual network infrastructure.
- Experience in independently leading work packages, exercises or trials that require the design, purchase, build, operation and maintenance of equipment.
- Software development skills sufficient to build applications from source.
Desirable skills
- Experience of cyber exploitation of databus or datalinks or manipulation of data
- Signal processing and detection of anomalous data events
- Experience in heterogeneous communication networks (mixed IP/non-IP traffic)
- RF communication experimentation with data collection using both hardware and simulation including design of experiments
- RF communications knowledge, design, analysis and implementation of protocols
- Analysis of data from RF communications systems for detection and pattern of life
- Experience of Military communication systems RF communications
- Data science of RF data for anomaly detection
- Visualisation of data, development of analytics, packaging and deploying software
- Experience with building cloud/virtual computing platforms (OpenStack)
- Experience in host log systems on Windows and Linux (Sysmon, logcheck, and central log collection)
- Experience in network sensor placement
- Experience with host/network intrusion detection systems (Snort, OSSEC)