Cyber Security Threat Modeling Integration Engineer - Technician 2

Client Name: City of New York
Start Date: September 1, 2025

End Date:August 31, 2026

Contract Length (in weeks): 52 weeks

SCOPE OF SERVICES

TASKS:

The Client currently leverages contract engineers to develop and update custom parsers / connectors for the
Operational Defense Intelligence Network (ODIN), the client's primary threat intelligence platform and
workbench. These parsers / connectors are used to automate the importation of data and reports
into ODIN from our internal and external intelligence and data sources, which are critical to core
functions and workflows, including disseminating intelligence to its stakeholder-facing finished
intelligence (FINTEL) platform, Threat Observables and Reports (ThOR). The client requires development of
several additional parsers / connectors to meet organizational requirements and support periodic
updates and tuning of existing parsers / connectors. The access to shared threat intelligence and
models enabled by these parsers / connectors provides a wider view into the network threat
spectrum as provided by multiple threat models, vendors and industry partners.

• Design and implement solutions that enhances the security posture of tools across multiple
  platforms.
  
• Develop security content for tools and technologies that the Threat Management team relies
  on to ensure business as usual functioning.
  
• Integrate innovative and custom technology to improve accuracy of alerts and notifications
  received by teams within Threat Management.
  
• Create well documented and clearly articulated code, process and services documentation.
  
• Understanding REST and SOAP API usage and implementing solutions utilizing APIs from
  Cyber Command utilized solutions, that enhance detection and response capabilities of the
  the client's Threat Management.
  
• Work closely with Cyber Command Security Sciences team to ensure continuous
  improvement of the security posture of key tools and technologies that protect the City of
  New York.
  
• Handle special projects and initiatives as assigned.

Requirements

MANDATORY SKILLS/EXPERIENCE

Note: Candidates who do not have the mandatory skills will not be considered

• At least 4 years of experience in Cyber Threat Intelligence initiatives, including enhancing
  prevention, detection, response and recovery efforts through various technical and
  operational methods.
  
• Proficient in Python.
  
• Ability to leverage REST API’s to build tool and platform integration.
  
• Proficient in git version control and git life-cycle development.
  
• Excellent verbal and written communication skills are required.
  
• Basic understanding of Agile development model.
  

DESIRABLE SKILLS/EXPERIENCE:

• Experience working with OpenCTI.
  
• Experience developing parsers for text-based resources.
  
• Understanding of public cloud platforms and experience with utilizing platforms such as
  Azure, AWS or Google Cloud.
  
• Experience working in a security environment and/or supporting security teams from a
  technical standpoint.
  
• Familiarity with using version control source-code repositories