View all jobs
Cyber Security Consultant
Remote, RemoteFor one of our clients in the utilities industry we’re looking for a freelance Cyber Security Consultant:
Project description:
The project “Cyber Defense Center (CDC) transformation” is covering the implementation of TheHive as a Case Management, Malware Information Sharing Platform (MISP) as a threat intelligence platform as well as creating and updating the Security Incident Management process. The aim of the project is the proper implementation of new processes and technologies with an updated and detailed documentation as well as compliance with the quality and timelines according to the planning.
Task description:
Skills:
Project start: January 2022
Project location: Remote
Project duration: 4+ months
Project description:
The project “Cyber Defense Center (CDC) transformation” is covering the implementation of TheHive as a Case Management, Malware Information Sharing Platform (MISP) as a threat intelligence platform as well as creating and updating the Security Incident Management process. The aim of the project is the proper implementation of new processes and technologies with an updated and detailed documentation as well as compliance with the quality and timelines according to the planning.
Task description:
- Analyze and consolidate the different project activities and provide consolidated project reports for management consumption using inhouse provisioned templates and reporting tools (Sharepoint, Excel, Powerpoint and/or Power-BI). The information about the project activities will be provided by the client beforehand.
- Steer, control and define the project deliverables for the Incident Management Program (Optimization Project) based on the previous analysis. Create documentation with the results and present them to the client for a sign off.
- Organize, control and coordinate theHIVE and MISP case management solution implementation and release based on the previous analysis. Create documentation with the results and present them to the client for a sign off.
- Analyze and control the effective integration of service and processes within SIEM and SIM services. Define key delivery milestones and program tracking based on the analysis.
- Review the processes and workflows from the Cyber Defense Center Security Incident Management, Case Management and Threat Intelligence. Create documentation with the results and recommendations for necessary changes and present it to the client for a sign off.
- Implement the necessary documentation updates in the Cyber Defense Center in all relevant procedures accordingly (process descriptions, policies, playbooks, use cases and workflows).
- Review the documentation and implementation of the third-party companies involved in the deliverables (G&K and Wallsec) by checking the quality, technical requirements and information of the security concepts.
- Analyze and review the design, concept creation & implementation of security aspects after the client presents the inputs. Consult the client’s CDC professionals accordingly. During the engagement period, analyze the following areas:
- CDC processes and procedures, inputs and outputs in MS Sentinel, TheHive, MISP, Qualys and SNOW platforms.
- Clinet CDC internal Tiers 1, 2 3 and 4 definitions as well as the integration with the Service Providers G&K and Wallsec.
- Client CDC Security Incident process and IT Incident Process integrations.
- Client CDC Security Incident process and Global Service Desk integrations, playbooks and knowledge base.
- Create documentation with the results and present it to the client for sign-off.
Skills:
- Project Management
- Security Operations Center experience
- Documentation
- Security Architecture experience
- Security Incident Management
- Security Policy Management
- Discipline, organisation, documentation
Project start: January 2022
Project location: Remote
Project duration: 4+ months