Position Details
Our client is a multinational company operating in the Energy industry. They have developed and are since operating a large fleet of power generation facilities in over 20 countries across 4 continents.
They are currently seeking a Cybersecurity Senior Engineer to join a global Cybersecurity and Operations team. This role reports to the Deputy Chief Information Security Officer and has the responsibility to deploy cybersecurity infrastructure in accordance with the company’s architecture templates and standards.
Job Responsibilities
- Design and configure cybersecurity infrastructure.
- Design and support the deployment of cybersecurity controls for the company’s IT and OT technology platforms and networks.
- Plan, implement, test, maintain, and upgrade cybersecurity infrastructure and technology platform cybersecurity controls.
- Troubleshoot cybersecurity infrastructure and control problems.
- Develop actionable cybersecurity controls implementation guidelines and required levels of protection that align with the company’s enterprise level cybersecurity risk and control framework.
- Support cybersecurity incident response.
- Support IT and OT change management process.
- Test and identify network and system vulnerabilities.
- Conduct periodic assurance reviews across all cybersecurity infrastructure and IT and OT platform controls to ensure that designs are built and implemented to the agreed architecture.
- Collaborate with the Cybersecurity GRC function to process and evaluate architecture and design exception requests.
Job Requirements
- 5+ years experience in Cybersecurity operations
- A degree in computer science, IT, systems engineering, or another related field
- In-depth knowledge of cybersecurity design and implementation practices, ideally within the Electrical Utilities or similar industry sectors with critical infrastructure OT environments
- Expertise with a wide variety of cybersecurity vendors and tools, and experience designing and managing vendor evaluation processes
- Knowledge about cyber attackers’ tactics, techniques and procedures (TTP)
- Highly collaborative with ability to articulate ideas and influence peers and senior leaders
- Strong analytical and critical thinking skills
- Proficiency in analyzing and solving problems
- Team player, motivated to help others and comfortable giving and receiving feedback
- Flexible, resilient under pressure, and decisive, with a proven track record of delivering results within tight deadlines
- Willingness to travel to company facilities as required (20%)
The following skills and/or competencies will be considered an advantage:
- Certified Information System Security Professional (CISSP) certification
- Experience with OT / ICS / SCADA environments
- SANS courses: Purple Team curriculum is desirable
- Global Industrial Cybersecurity Professional (GICSP) certification is desirable
- Certified SCADA Security Architect (CSSA) certification is desirable