Cyber Experimentation Lead
The Dstl Cyber Systems Programme is looking to develop skills, experience and understanding of non-IP or RF communication protocols and systems such that it can enable development of robust methods to detect anomalous or malicious traffic beyond the scope of the traditional enterprise network.
To support this aim we require a motivated and driven individual and to successfully design and build simple test bed demonstrator’s utilising different military communications standards and protocols. This will help support our staff in understanding dataflow and how to spot anomalous activity that could be due to a cyber attack.
One or more of the following is Essential:
• Experience in the design and build of enterprise network sensors and associated analytics in constrained environments (low size/weight/power/bandwidth)
• Experience in design and build of simple networks using non-ip based communication protocols, (e.g. databuses and/or RF datalinks such as Mil-StD-1530, CANBus, firewire, GVA, link-16 or others)
• Experience in the design and set-up of virtualised networks simulating above systems to enable readily available training networks that are more readily accessible outside the laboratory
Essential skills that also need to be demonstrated:
• Experience in the design of exercises or training packages using physical or virtual network infrastructure.
• Experience in independently leading work packages, exercises or trials that require the design, purchase, build, operation and maintenance of equipment.
• Software development skills sufficient to build applications from source.
• Experience of cyber exploitation of databus or datalinks or manipulation of data
• Signal processing and detection of anomalous data events
• Experience in heterogeneous communication networks (mixed IP/non-IP traffic)
• RF communication experimentation with data collection using both hardware and simulation including design of experiments
• RF communications knowledge, design, analysis and implementation of protocols
• Analysis of data from RF communications systems for detection and pattern of life
• Experience of Military communication systems RF communications
• Data science of RF data for anomaly detection
• Visualisation of data, development of analytics, packaging and deploying software
• Experience with building cloud/virtual computing platforms (OpenStack)
• Experience in host log systems on Windows and Linux (Sysmon, logcheck, and central log collection)
• Experience in network sensor placement
• Experience with host/network intrusion detection systems (Snort, OSSEC)