The purpose of Nordic Financial CERT is to strengthen the Nordic financial industry¿s resilience to cyber-attacks, by enabling Nordic financial institutions to respond rapidly and efficiently to cyber security threats and online crime. As a collaborative initiative, it allows members to work together when handling cybercrime, sharing information and responding to threats in a coordinated manner.

Financial sector collaboration in Norway has proven effective in providing communication channels, cyber incident and threat information sharing, and incident handling. Nordic Financial CERT takes this to another level and establishes a common collaboration and communication platform for the financial industry across borders. It expands existing networks by extending from the successful Norwegian model, FinansCERT, to bring all Nordic members together in collaboration, dialogue, support and partnership.

The initiative creates a joint effort to proactively identify threats, coordinate incident response, provide incident handling support, and ensure overall protection from various cyber-criminal activities. This provides a safety net for small and large members, and is based on subject-matter expertise, dialogue, understanding the members¿ needs, and prioritizing the human factor in building and fostering networks of trust. It promotes a collaborative culture with information sharing to engage and protect the Nordic financial community and their customers.

The purpose of the Nordic Financial CERT association is to enable Nordic financial institutions to respond to cyber security threats and online crime rapidly and efficiently.

In this position you will conduct research both independently and with the larger team to identify cybersecurity threats and produce analytical products. You will use all sources of data collection and analysis in order to produce a common operating picture of intrusion or threat related activity. This includes developing and maintaining new technical and non-technical sources of information, threat research, threat profile development, analysis, briefings, and warnings.

The field of cyber threat intelligence is still immature, and in this position you will have the opportunity to influence and shape the field in the Nordic Financial sector through your contributions, with a focus on practical use and value from the threat intelligence work and deliverables.

Responsibilities

• Identify, classify, prioritize and report on cyber threats using a structured approach/methodology
• Identify and develop a portfolio of threat profiles, threat activity, trends and common attack vectors from all available sources (open source, partners, and commercial)
• Provide actionable information by producing a variety of concise and actionable threat analysis and warning products in written and presentation form to an audience that spans a range from senior company executives to security analysts and incident responders
• Collect information on threats to the organization through communication with members, other partner institutions, mailing lists, open source, and industry partnerships
• Compile and analyze cyber threat information and make recommendations based on suspected or known context in order to draw insights and conclusions regarding its relative threat to members of NFCERT
• Provide awareness to members on changes in the cyber threat landscape
• Conduct research and make recommendations to produce a library of cyber threats; threat vectors; threat actors; and threat trends

Nordic Financial CERT characteristics

• We are a small agile organisation, where everyone learns from each other.
• We cooperate very tightly with our members security teams
• We are the spearhead of attack and threat research in our sector, and are constantly challenged.
• We build unique tools, techniques and procedures -- and we aim to fail fast.

Why choose this opportunity with Nordic Financial CERT?

• Challenging and stimulating work -- serving a purpose for the Nordic societies
• A "startup" work environment with committed colleagues
• Opportunities to expand your skills
• Modern offices with good public transport possibilities
• Flexible working hours
• Competitive salary and benefits package
• 6 weeks' vacation

Required competence

Experience with one or more of the topics of; intelligence analysis, incident response, authoring strategic and tactical intelligence products /reports for a variety of stakeholders, e g technical SOC and anti-fraud analysts, incident responders, and senior and executive management

• Higher education; technical, financial/commercial or military
• Excellent teamwork skills and ability to collaborate with a diverse team of skilled cybersecurity professionals
• Excellent communication skills, oral and written

Competencies that will be a plus

• Formal training and/or experience as cybersecurity or intelligence analyst
• Experience with cyber threat intelligence, and preferably knowledge of central models / techniques for handling
• Experience with intelligence concerning the financial sector
• Process driver / basic project management
• Certification in information security, e.g.: GCIH; GCIA; GCTI; CISSP

Personal characteristics

• Cooperation-oriented. Must be able to create good working relations with members, partners and vendors
• Analytic, structured
• Curious and passionate
• Proficiency in English and desirable with one of the Nordic languages

Other

• Candidates must pass security clearance on the level of SECRET
• Some travel expected (mainly in the Nordic region)

Søknadsfrist:03.06.2018

Arbeidsgiver:Nordic Financial CERT

Sted:Oslo

Bransjer:IT







Adresse: 0253 OSLO