Job Description

About the job
We are seeking a highly skilled and experienced Senior Cyber Security Generalist to join our team. The successful candidate will be responsible for developing and implementing Cyber Security strategies to protect our company's systems and data from cyber-attacks, as well as identifying and mitigating cyber security risks.

Quick response

Required Knowledge

• K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
• K0002   Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• K0004   Knowledge of cybersecurity and privacy principles.
• K0005   Knowledge of cyber threats an`d vulnerabilities.
• K0026   Knowledge of business continuity and disaster recovery continuity of operations plans.
• K0038   Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.
• K0042   Knowledge of incident response and handling methodologies.
• K0046   Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
• K0090   Knowledge of system life cycle management principles, including software security and usability.
• K0092   Knowledge of technology integration processes.
• K0149   Knowledge of organization's risk tolerance and/or risk management approach.
• K0150   Knowledge of enterprise incident response program, roles, and responsibilities.
• K0179   Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
• K0332   Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

Required Skills

• S0027   Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

Required Abilities

• A0161  Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements).