Cybersecurity Engineer, National Incident Response Team - Federal Reserve (NYC, East Rutherford, Dallas, or Richmond)
The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System, delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. The mission of the National Incident Response Team is to play a leading role in the Federal Reserve System’s efforts to protect its information systems against unauthorized use.
As a member of NIRT's Cyber Intelligence Services, the Cyber Intelligence Engineer will build and improve NIRT's threat intelligence capabilities for the Federal Reserve System. This role is responsible designing and implementing software for collecting, analyzing, and presenting threat intelligence data. This involves communicating with business and technical stakeholders to understand intelligence requirements, identifying and integrating relevant data sources, and engineering innovative solutions for technical challenges. Job Responsibilities:
The ideal candidate is highly interested and well versed in the information security field, enjoys building tools to solve problems, and has a strong desire to seek out new knowledge to overcome unfamiliar challenges.
Specific skills include the following:
- Well versed in information security principles and concepts.
- Strong analytical and critical thinking skills demonstrated by the ability to make sound decisions independently.
- Ability to execute on tasks and lead small and medium projects.
- Strong programming knowledge in Python. Other languages a plus.
- Ability to produce maintainable, understandable, well commented code and procedure documentation.
- Research and learn independently to find alternative strategies for solving problems.
- Demonstrate excellent communication and collaboration skills in order to effectively work with clients, management, and colleagues.
- Demonstrate knowledge of, and ability to communicate about, the information security threat landscape.
- Understanding of computer host/network forensic artifacts and indicators of compromise.
- Thorough understanding of all layers of the OSI model and HTTP protocol.
- Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, and other network protocols.
- Strong SIEM utilization skills to instrument business logic.
- Consolidate and correlate data from multiple data sources in a variety of structures or formats for analysis.
- Conduct research of unconventional technologies and development focused on tools applicable to cyber threat intelligence.
- A bility to communicate technical issues to technical and non-technical business representatives.
- Identify engineering opportunities for improved processes, detection of threats, and analysis of security events.
- Understand strategic objectives and visions, and plan work toward those goals.
- Follow operational security best practices over convenience to not compromise Federal Reserve System information assets and intelligence sources.
In addition to the required skills above, the FRS prefers individuals with the following skills:
- Ability to plan and develop functional and non-functional requirements for future threat intelligence capabilities.
- Participate in or lead customer facing meetings and projects, including those that involve technical topics or technical service delivery.
- Ability to scope projects and plan for the management of a product's development and ongoing operation and maintenance.
- Ability to consider broad ramifications of software design decisions and balance long term needs.
- Software development experience involving automation and/or APIs.
- Data science, machine learning, data mining, and/or statistical modeling experience.
- Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or a domain related field or an equivalent combination of education and work experience.
Additional Qualifications or Requirements
- Requires 5 years (8 years preferred) of combined IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration and over 3 years experience (over 5 years preferred) in computer network defense, computer network exploitation, incident response, computer forensics, malware reversing, cyber intelligence or engineering principles discipline
The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service.
- Ability to obtain and maintain National Security Clearance, which includes US Citizenship.
- Requires in-depth knowledge of security issues, techniques and implications across all existing computer platforms.
- Extensive experience in designing and implementing security solutions.
- Deep understanding of computer network defense, computer network exploitation, incident response, computer forensics, malware reversing, or cyber intelligence.