The purpose of the US Agency for International Development (USAID) Cybersecurity for Critical Infrastructure in Ukraine Activity is to strengthen the resilience of Ukraine’s critical infrastructure from cyberattacks by establishing trusted collaboration between key cybersecurity stakeholders in the government, private sector, academia, and civil society. The activity aims to achieve this goal by implementing the following activity components:
Component 1: Strengthen the cybersecurity enabling environment
The legal, regulatory, and institutional framework for national cybersecurity in Ukraine needs to be strengthened and aligned with international standards and best practices. This component will strengthen the cybersecurity resilience of Ukraine’s critical infrastructure sectors by addressing legislative gaps, promoting good governance, enabling collaboration between stakeholders, and supporting cybersecurity institutions.
Component 2: Develop Ukraine’s cybersecurity workforce
Ukraine suffers from a severe shortage of cybersecurity professionals. This component of the USAID Cybersecurity for Critical Infrastructure in Ukraine Activity will address workforce gaps through activities that develop new cybersecurity talent and build the capacity of existing talent. These activities will address the entire workforce pipeline, the quality of education received by cybersecurity specialists, and industry training programs to rapidly upskill Ukraine’s workforce to respond to immediate cybersecurity vulnerabilities.
Component 3: Build a resilient cybersecurity industry
A growing cybersecurity industry in Ukraine will contribute directly to national security and prosperity. This component will seek to build trust and collaboration between the public and private sector to develop innovative solutions for future cybersecurity challenges; spur investment and growth in the broader cybersecurity market in Ukraine through greater access to financing; support smaller cybersecurity companies to rapidly increase the number of local cybersecurity service providers; and offer mechanisms for Ukrainian firms to connect with industry partners to enable better access to innovations and business opportunities.
The National Security and Defense Council (NSDC) is one of Ukraine’s key government authorities and one of the Activity’s primary stakeholders. The National Coordination Center for Cybersecurity (NCCC), under the NSDC, is responsible for overseeing and coordinating implementation of cybersecurity policy as it relates to national security. The NSDC has developed a new Cybersecurity Strategy (Strategy) to address cyber security challenges and advance cyber capabilities of Ukraine.
However, NSDC/NCCC need more comprehensive analytical assistance, developing their analytical capacity, and sharing with other cyber stakeholders ongoing assessments of the cyber security threat landscape. The Activity assists NSDC/NCCC in improving their analytical capability and provides rapid analytical support for those tasks.
Activity is looking for the services of a Threat Intelligence Analyst to identify priority areas for the analytical tasks, analyze tactics of cyberattacks on critical infrastructure operators, determine cyber activities patterns, establish processes for cyberattacks responses, and build capacity on protecting critical infrastructure in cyberspace. This work will be in close coordination with NSDC/NCCC representatives.
The Activity is looking for a Threat Intelligence Analyst to:
The Threat Intelligence Analyst will work under the oversight of the Enabling Environment Lead.
Due by date
Monthly report on cyberthreats which should contain results on:
— systems for collecting and exchanging information about cyber incidents;
— connecting to information collection and exchange systems;
On the monthly basis
Period of Performance: 1 January 2023- 31December 2023
Qualified candidates should send their CV and cover letter with the name of position in the subject line to [email protected] by 16 February 2023 6:00pm Kyiv time. Only short-listed candidates will receive notice requesting additional information.