Cyber Operator

Overview

Cyber Operators conduct defensive cyber operations, and when required and where feasible, active cyber operations. They liaise and work collaboratively with other government departments and agencies, as well as with Canada’s allies to enhance the Department of National Defence (DND) and the Canadian Armed Forces (CAF) ability to provide a secure cyber environment. They monitor CAF communication networks to detect and respond to unauthorized network access attempts and provide cyber support to meet the operational requirements of the Navy, Army, Air Force, and joint enablers.

A Cyber Operator has the following responsibilities:

Collect, process and analyze network data
Identify network vulnerabilities
Manage a computer network environment
Conduct defensive and active cyber operations
Apply security and communications knowledge in the field of information technology
Use and maintain classified and unclassified records and publications

Work environment

Cyber Operators work with extremely sensitive information in a high-security environment, within restricted-access facilities. Cyber Operators are required to work shift work throughout their careers however, they have frequent opportunities for employment in positions that work regular business hours. Cyber Operators serve in the sea, land or air environment, and on deployed operations around the world. They can also be employed in exchange positions as part of the personnel exchange program with United States armed forces or other allied nations.

Pay & Benefits

Career Overview

Transcript

TITLE:

CYBER OPERATOR

IN THE CANADIAN FORCES

Cyber Operator is an individual who is tasked with monitoring and analyzing network traffic in the goals of defending Canada’s networks and information. The enemy is looking for information on our proprietary systems, our research, our development, all of our bigtime secrets. I work in one of the most secure facilities within the Canadian Forces. I come to work, I take a look at monitoring our automated systems, checking to see if any reports of vulnerabilities or attacks have been present. And once I’ve taken a look at our automated systems, I take a look at the threats of tomorrow; trying to find how people are trying to navigate through our networks without our notice. Whether it’d be from surveillance: watching active systems. Forensics: trying to reverse engineer malware or pull evidence off of infected machines. Reconnaissance: doing scans and looking for vulnerabilities, either within our systems or through interconnecting systems. Or you could be part of Red Team or Blue Team: individuals who are tasked with finding new vulnerabilities on our network. All the things that could cost the lives of soldiers overseas.

You always have to be looking for, how will the enemy break through our defences today? What you knew six months ago may not be valid today or tomorrow. The coolest part about the job is that I can’t talk about the coolest parts of my job. What I can say is that the unique challenges of seeing active operations, whether against us or what we are doing internally, presents challenges that you can’t get anywhere else.

(…similar activity coming from another subnet)

We are facing up against professionals who are getting paid fulltime to go after our networks and our assets. When you look at traffic and you know that something bad is happening, you do your research, you build tools and then the end result of all of that, you have what the enemy was doing in plain text. There is no more rewarding experience that I’ve ever had within the Canadian Forces.

Related Civilian Occupations

Internet Security Analyst
Network Support Analyst
Computer Incident Response Specialist
Cyber Reporter
Systems Auditor

Training

The first stage of training is the Basic Military Qualification (BMQ) course, or Basic Training, held at the Canadian Forces Leadership and Recruit School in Saint-Jean-sur-Richelieu, Quebec. This training provides the core skills and knowledge common to all military occupations. Another objective for the course is to ensure that all recruits maintain the CAF physical fitness standard. As a result, the training is physically demanding.

Learn more about Basic Training here.

After your BMQ you will be sent to a CAF-approved college program on computer network security where you will learn:

Software development
Network Situational Awareness
How to respond to and report on cyber events
How to conduct analyses

After successful completion of the college program, or if you already have a diploma from an approved institution, you will attend the Canadian Forces School of Communications and Electronics (CFSCE) in Kingston, Ontario, for approximately 16 weeks. Using a combination of theory, demonstrations, practical work and simulation exercises, the CFSCE course will cover:

Cyber Operations
Data capture and statistical analysis
Communications and data security
Operation of auxiliary equipment

Cyber Operators may be offered the opportunity to develop specialized skills through formal courses and on-the-job training, including:

Network vulnerability evaluations and assessments
Digital forensics
Threat intelligence analysis
Active cyber tasks
Malware identification and analysis
Cyber event mitigation

Cyber Operators who demonstrate the required ability, dedication and potential may be selected for career progression opportunities, advanced training, and promotion.

The minimum required education to apply for this position is Secondary high school graduation diploma, Secondary V in Quebec, or equivalency including:

Gr 12 Applied Math or Math 526 / SN V/TS V in Quebec, or,
Gr 12, or Secondary V with Computer Studies, Computer Science or Programming

Future Entry Plan: as part of a phased approach to filling Cyber Operator positions within the CAF, we will soon accept applications from individuals who have already completed a CAF-endorsed college program (see the CAF-ACE website for information, or contact your nearest recruiting centre).