ICS / OT Cybersecurity Engineer

Summary

• ICS/OT Cybersecurity Engineer helps clients identify and evaluate security gaps in industrial control systems (ICS), subsequently driving the implementation of solutions to mitigate security exposure. ICS/OT Cybersecurity Engineers are also expected to anticipate security requirements, analyze, and understand the client’s security posture and formulate right-sized solutions based on industry-leading practices tailored to their specific industries.

Responsibilities

• Assess, Audit, Recommend, Design, Document, and improve security solutions and processes for Scada / DCS / IIoT systems e.g Siemens, Schneider, Yokogawa etc.
• Installing, implementing, and testing cybersecurity solutions for Industrial Control Systems.
• Performing analysis based on Purdue architecture and infrastructure of Industrial Control Systems (SCADA / DCS / IIoT) in terms of cyber security.
• Participate in the design, implementation, and troubleshooting of our industrial OT cybersecurity operational and monitoring solution.
• Conduct vulnerability and risk assessments within manufacturing and critical infrastructure environments to identify security risks and threats (e.g., unsecured remote access points, suspicious remote connections, unauthorized devices on the network, etc.) and provide recommendations to remediate the identified issues.
• Creating detailed documentation (e.g. HLD, LLD, Data Flow Diagrams, and implementation/test plan) diagrams (e.g., network, cabling, server, rack, logical architecture, etc.), procedures, and plans (e.g., implementation, SAT, mitigation, etc.) as needed to support projects.
• Identify and deploy OT security monitoring tools e.g. NIDS and SIEM solutions for proactively recognizing trends and anomalies across the environment.
• Assist in the development of comprehensive OT security monitoring playbooks to enable a rapid response to an information security incident in the OT environment.
• Deploy and implement tools and technologies that are tuned and enable a proactive OT information security control landscape.
• Develop resiliency in OT security operations to enable ongoing processes in the event of a cyberattack.

Education and Experience

• A bachelor’s degree (Computer Science, Information Security) or equivalent degree.
• A minimum of three (5) years of “hands-on” experience assessing, designing, and implementing IT network architectures.
• A minimum of three (3) years “hands-on” experience assessing, designing, and implementing ICS/OT network architectures.
• Comprehensive understanding of the Purdue and/or Zones and Conduits security models.

Security Certification

• Cisco CCNA / CCNP / CCIE (CCIE would be preferred).
• Fortinet NSE 4 / NSE 7 / NSE 7 OT (NSE 7 OT would be preferred).
• Nozomi certification – Optional.
• ISA / IEC 62443 Foundational / GIAC GICSP – Optional.
• Knowledge and experience (designing, commissioning, or maintaining) ICS systems: SCADA, EMS, DCS, or PLC e.g Siemens, Schneider, Yokogawa, etc.
• Knowledge and experience in supporting or troubleshooting industrial protocols such as OPC, Modbus TCP, HART, etc.
• Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, etc.).
• Familiar with design, maintenance, protection, and troubleshooting of operations technologies including industrial control systems (ICS) hardware and software.
• Solid familiarity with Active Directory, Network Services (DHCP, DNS, and WINS), and VMWare ESX or other server virtualization platforms and Microsoft Windows Server 2012R2 / 2016 / 2019.
• Working knowledge of OT security technologies (Nozomi, Dragos), OT Network Devices (Fortinet, Cisco,) OT Security monitoring solutions (IBM QRadar, FortiSIEM), and Data Diode (Owl Cyber Defense, Waterfall).
• Candidates must be available locally with transferable visas and ready to join immediately.

Skills and Abilities

• Strong oral and written communication skills, including demonstrated ability to document the systems infrastructure.
• Ability to work independently as well as within a team environment.
• Ability to effectively cooperate with personnel of different backgrounds and skill levels.