ICT & Cyber Security Engineer

To work with control system SMEs and operational staff to design, implement and support the security of ICS networked systems including but not limited to:

Security technologies such as firewall logs, IDS, endpoint security solutions, access control systems, and other related security technologies within ICS environment.

Incident response and handling in an ICS environment to include investigating computer and network intrusions; remediation support; performing comprehensive computer surveillance/monitoring, identifying vulnerabilities; developing secure network designs and protection strategies, and audits of information security infrastructure.

Lead maintenance and administration efforts of internal ICS infrastructure utilizing strong understanding of ICS environments.

Support current and legacy computer technologies in ICS environment. Operating systems may include Windows 95 through Windows 10 (and beyond) and various Linux operating systems.

Responsibilities

• Maintains the compliant cybersecurity ICS architecture of the plants as per the local regulatory bodies.
• Responsible for completion of the ICS DR recovery Plans, work with the local I&C team to populate and maintain the Plan as per the corporate standards.
• Actively manage and coordinate DR testing schedules, objectives, exercises, and reviews.
• Collect and document information about current systems at each site including control applications, hardware, network, and infrastructure and their dependencies.
• Will be responsible to work with the NOMAC ICS local teams at each site to ensure that DR capabilities across the ICS environment will meet the Recovery Time (RTO) and Recovery Point (RPO) objectives.
• Making sure the plan is tested as per the schedule in the DRP.
• Maintaining compliance with corporate and national regulation with regard to ICS cyber security.
• Participate in ICS security incident response through all phases.
• Consult on ICS security matters as needed.
• Act as a liaison between operations and corporate IT security teams.
• Design, implement and manage innovative solutions for ICS infrastructure environments.
• Attend meetings at various locations (in different countries) either in person or remotely on short notice to participate and understand the ICS challenges requiring innovative and cost-effective solutions.
• Assist Monitoring & Prediction Centre (MPC) team to resolve ICS related issues (including connectivity aspects) for various plants on a timely basis.

Requirements

• A Bachelor degree holder in Electrical/Electronics, Mechatronics or Industrial Engineering or related field.
• 10+ years of experience in managing ICS systems (including security aspects) with a track record of successful accomplishments.
• Minimum of 3 years previous experience working in ICS cyber security.
• Minimum of 3 years previous experience developing and/or deploying mitigation techniques for defending networks including ICS patch management (like Windows, Unix, Linux, and other such operating systems).
• Experience with various DCS/PLC/SCADA systems including managing cybersecurity aspects is preferable.
• In-depth understanding of operating systems, network/system architecture, and IT architecture design related to ICS.
• Thorough understanding and extensive experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS) and the role of common system components.
• Understanding of IT and OT network communication protocols (including TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET) and ability to perform packet analysis.
• Understanding of threats, vulnerabilities, and exploits in ICS environment and appropriate mitigation techniques.
• Understanding of ICS design considerations with emphasis on human safety and the availability/security of operating environment; preparation, review, and maintenance of documents, policies, and standards governing the security operations for ICS equipment and networks.