Careers

 

FS-ISAC - Position Openings

Information Security Manager, FS-ISAC

​Sr. Cybersecurity Intel Analyst, GRF

Full job descriptions of the positions listed above are available following the position openings section. To apply, please send a cover letter and resume to HR@fsisac.com with the position's title listed in the subject line.

 


 

Financial Services Information Sharing and Analysis Center (FS-ISAC)

Position: Information Security Manager

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: Mid-Level Management                                Travel Required: 10 - 20%

Work Schedule: Mon - Fri: 40 hours                                 Positions Supervised: TBD

Firm: New Hire

 

POSITION SUMMARY

The Financial Services Information Sharing and Analysis Center (FS-ISAC) is a non-profit corporation that was established in 1999 and is funded by its member firms.  The FS-ISAC is a member-driven organization whose mission is to help assure the resilience and continuity of the global financial services infrastructure and individual firms against acts that could significantly impact the sector’s ability to provide services critical to the orderly function of the global economy.  The FS-ISAC shares threat and vulnerability information, conducts coordinated contingency planning exercises, manages rapid response communications for both cyber and physical events, conducts education and training programs, and fosters collaborations with and among other key sectors and government agencies.

As one of the premier ISAC’s, the FS-ISAC has a history of innovation and delivering valuable products and services to our members to help achieve our mission.  To ensure our members are continuously aware and prepared for today’s threats and tomorrow’s challenges, the FS-ISAC is seeking an Information Security Manager to manage the FS-ISAC security program.

 

JOB DESCRIPTION

The position of Information Security Manager is responsible for establishing the security strategy and the overall risk posture of the organization through the development of a comprehensive risk management program. This program is appropriate for the risk appetite of the organization focusing on the confidentiality, integrity, and availability of the organization and membership's information assets. The manager will work with the sales and marketing departments to enable membership sales opportunities and executive-level member engagement through thought leadership and relationship building.
This position reports directly to the Chief Information Risk Officer and will support the CIRO in communicating with the Board of Directors Security & Risk Committee.

 

RESPONSIBILITIES

Establish and maintain a global cyber risk and security program driven by established information protection and physical security policies. Collaborate with internal stakeholders to develop processes and procedures to carry out the intended goals of the policies.

Responsible for the development and management of a robust security program responsible for security operations, administration of logical and physical access, monitoring of threats against the organization and membership, vulnerability management, intrusion detection/prevention, malware detection/prevention/analysis, data loss prevention, forensics, incident response, and event logging/correlation.

Responsible for the continuity of business/disaster recovery program of the organization working closely with the Director of IT and Director of Business Resiliency to facilitate.

Having advanced knowledge of the global threat landscape, the incumbent will also shape the direction of the Intelligence program integrating threat information compiled from disparate sources with data available from email distro lists, vendor feeds, and commercial products to maintain existing intelligence products as well as enabling the creation of new product capabilities.

Be a global strategic thinker who knows how to integrate people and process with procedure while always executing on the broader mission.

Superb interpersonal skills to manage a highly diverse and global staff working in a fast-paced and dynamic environment.

Align with priorities and mission of the Chief Operating Officer, CIRO, & VP, Information Technology to ensure security is "baked in" to all operational functions of the organization.

Partner closely with the head of Sales & Marketing and Chief Product & Innovation Officer to enable sales opportunities by providing expertise in security to potential members typically at the C-Suite level.

 

DESIRED SKILLS AND EXPERIENCE
 

  • Strategic thinking, thought leadership, strong presentation skills.
  • Certification with ISSEP/CISSP, CISM, GSEC, etc.
  • Outsourcing management experience.
  • Strong working knowledge of global threat landscape from both a physical and cyber perspective.
  • 10+ years of experience leading a global cyber security program.
  • Ability to forge and maintain strong relationships with various government agency officials, membership leadership, and vendor executives.
  • Exceptional ability to manage resources and priorities across multiple time zones and countries; Multi-cultural knowledge a plus.
  • Previous law enforcement or inter-agency experience preferred.

 
ADDITIONAL INFORMATION

  • An equitable compensation package will be provided commensurate to work experience & job requirements.
  • Ability to obtain a Clearance from US government partner agency a plus.
  • The FS-ISAC offers a comprehensive benefits package including paid time off, medical, and dental benefits paid for by the employer, annual bonuses, 401k plan with company match and others.
     

REQUIRED EXPERIENCE

  • Cyber Security, Threat Intelligence, Vulnerability Management, Business Continuity, Security Operations, Security Architecture and Design, Identity & Access Management, Risk Management, Compliance & Audits, Business Enablement: +15 years.

 
REQUIRED EDUCATION

  • Bachelor's Degree in Computer Science, Business, Engineering, or related field.  
  • Master's degree or equivalent work experience preferred.


LOCATION

This position will be based in our Reston, VA global headquarters.

 


 

Global Resilience Federation (GRF)

Position: Information Security Manager

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: TBD                                                              Travel Required: None

Work Schedule: Mon - Fri: 40 hours                                 Positions Location: Reston, VA

Firm: New Hire

 

POSITION SUMMARY

The mission of the Global Resilience Federation (GRF) is to help assure the resilience and continuity of vital infrastructure and individual organizations against threats and acts that could significantly impact individual organizations and various sectors’ ability to provide services critical to the orderly functioning of the global economy. GRF is a non-profit spin-off from the Financial Services Information Sharing and Analysis Center (FS-ISAC) that provides support and technology to ISACs, ISAOs, and other communities around the world, with co-located analysts supporting individual communities and participating in cross-sector sharing and collaboration. 

The mission of the Global Resilience Federation (GRF) is to help assure the resilience and continuity of vital infrastructure and individual organizations against threats and acts that could significantly impact individual organizations and various sectors’ ability to provide services critical to the orderly functioning of the global economy. GRF is a non-profit spin-off from the Financial Services Information Sharing and Analysis Center (FS-ISAC) that provides support and technology to ISACs, ISAOs, and other communities around the world, with co-located analysts supporting individual communities and participating in cross-sector sharing and collaboration.  

 

Job Description

GRF is seeking an individual to serve as a Senior Cybersecurity Intelligence Analyst. The primary focus of the Senior Cybersecurity Analyst is to perform in-depth cyber security intelligence analysis, and develop technical cyber and physical threat reports based on information derived from open/closed sources and community members. The senior analyst will lead efforts to continue and enhance information sharing capabilities and reporting across multiple ISAC/ISAO communities, with a primary focus on the oil and gas industry.

 

Responsibilities

Develop in-depth knowledge of sector assets, activities and constituents to provide meaningful critical information support and develop best practices and mitigation strategies

Develop custom analytic products and reports based on member requests and judgments derived from research. Provide analysis of the incident, threat, and provide mitigation courses of action and recommendations.

Develop sophisticated understanding of threats and incidents affecting the U.S. critical infrastructure and research, analyze new threats, TTPs, and campaigns. Provide reports signatures, and mitigation recommendations.

Post-incident analysis of submitted incidents, malicious files, emails, and pcaps from members, trusted partners, and internal research feeds.

Provide cyber threat intelligence analysis to sector communities and various internal teams and act as a subject matter expert. This includes trend analysis, correlating incidents and threats, observed incidents, and post-incident analysis. 

Facilitate threat topic discussions and briefings on a regular basis and provide expertise in the sector specific threat intelligence, and conduct presentations on specific topics at conferences and meetings as needed.

Continuously monitor and hunt in external and internal threat feeds, research, and reports for relevant threats to sectors.

Perform technical analysis on malicious or suspicious artifacts (malware samples, packet captures, etc.) to identify purpose and functionality and draft reports outlining malicious artifacts and their behavior.

Support the GRF SOC cyber analysts on multiple rotational duties by following operational processes and procedures and performing continuous process improvements.

Recommend and/or develop tools to monitor, analyze, and investigate cyber security incidents and threats.

Demonstrate an in-depth understanding of cyber threat capabilities and intentions.

Produce reliable signatures and Indicators of Compromise (IOCs) based on data obtained from internal and external sources.

Report to and provide daily and weekly status reports to the GRF Intelligence Officer.

 

DESIRED SKILLS AND EXPERIENCE

The successful candidate will:

  • Possess 8 to 12 years of combined work experience in cyber security, threat analysis, reversing malware and risk mitigation.
  • Experience identifying, processing, analyzing, reporting cyber and physical threats in the oil and gas industry. Experience in other industries will be considered.
  • Strong understanding of networking protocols, and experience analyzing network communications and malicious traffic.
  • Broad knowledge/experience in cyber security technology, techniques, and practices - intrusion monitoring, vulnerability analysis, web application security, incident response, malware analysis, threat research, or intelligence analysis.
  • Familiarity with U.S. cyber security programs and supporting organizations, including law enforcement agencies and associations.
  • Be self-motivated, responsible and disciplined, able to work as part of a team, handle multiple tasks simultaneously and consistently turn in high-quality work.
  • Be able to think critically and independently to identify potential threats to the sector, to research the nature of the threats, and to effectively communicate information concerning the threats to a large and diverse audience.
  • Have effective oral and written communications skills, with the ability to write focused situation reports and briefings quickly, accurately and without substantial editing.
  • Have effective interpersonal skills, able to interact with individuals from a variety of levels within the private and public sectors.
  • Be familiar with standard office software platforms, including MSWord, Excel, PowerPoint, SharePoint, MS Access, etc.
  • Be familiar with, or willing to train on Wiki related platforms and learn webpage development.
  • Participation in industry or technology information sharing groups, formal or informal.
  • Ability to perform log analysis and basic network or host-based forensics to find indicators of compromise or adverse events.
  • Knowledge of how operating systems function, and the ways malware interacts with them.
  • Knowledge of common network traffic protocols and analysis techniques.
  • Proficiency with analyst software tools such as Maltego, Analyst’s Notebook, and Palantir.
  • Experience with network analysis tools such as Wireshark, TCPDump and Scapy.
  • Experience with Security Incident Event Management, Log Correlation and Network Behavior Anomaly detection systems such as ESM, Splunk and ArcSight.
  • Experience with: Python, XML (STIX format), .NET, HTML, Bash. Ability to script when needed and utilize scripts for analysis.
  • Experience with administrating Antivirus, Web Proxies, IPS or IDS and other security tools.
  • Experience utilizing Threat Intelligence Platforms (i.e. Anomali, ThreatConnect, etc.)
  • Knowledge of cybersecurity threats, defensive technology, attack types, impact, reverse engineering, and operational concepts is a plus.
  • Experience working two or more of the following:
    • Security Operations Center (SOC)
    • Computer Security Incident Response Team (CSIRT)
    • Computer Emergency Response Team (CERT)

 

Required Education:

  • Bachelor’s degree in cyber security, computer science or equivalent 
  • Relevant certifications, such as CISSP, Security+, CCNA, CEH, GREM, GCIH or GCFA (or similar experience)

 

Additional Information:

  • Ability to obtain and retain a SECRET or above security clearance. 
  • Salary and benefits based on experience
  • This position is required to work in our Reston, VA office fulltime, M-F.

 

The GRF offers a comprehensive benefits package including paid time off, medical and dental benefits paid for by the employer, annual bonuses, 401k plan with company match and others.