Cyber Security PM/SME at Randstad USA

Opening / Selling Statement - Seeking a senior level cybersecurity engineer to work onsite at the client's Los Angeles facility to provide technical guidance, actively engage in the implementation, and oversee the management of security enhancements and incident response to raise the security posture of the organization.

Required Skills - Cyber security

security risk management plan

firewall

security architecture design

Job Duties - Provide technical guidance, actively engage in the implementation, and oversee the management of security enhancements and incident response.

- Understand, capture, and document the terminals information security, cybersecurity architecture, and systems security engineering requirements

- Conduct thorough security reviews to pinpoint deficiencies in the security architecture, and in conjunction with the central cyber teams produce a comprehensive security risk management plan to address and mitigate potential vulnerabilities.

- Ensure acquired or developed systems and architectures align seamlessly with our client's cybersecurity architecture guidelines, ensuring a cohesive and secure technological landscape.

- Facilitate the practical application of Cyber Standards and security patterns (OT) within the organization, employing a structured and future-proof framework that you actively help shape and refine.

- Collaborate with the outsourced service provider to strategize, ensure quality, and execute a tactical enhancement aimed at enabling network segmentation within the terminal.

- Take on a central role in driving initiatives focused on heightening awareness and enriching understanding of cybersecurity best practices and our client's standards. Your contributions are instrumental in bolstering the collective cyber comprehension, resilience, and preparedness of the terminals.

- Contribute innovative ideas and expert technical guidance to enhance the security posture of the terminal.

Job Requirements - Cyber SME with a Degree in Computer Science, Computer Engineering or related field, or 8+ years relevant work experience

- knowledge and hands-on experience of IT (also OT beneficial) technologies and applications.

- network engineering experience (switches & firewalls), with the ability to architect and configure

- Experience with design and assessment of secure IT, data flows and their security requirements

- Ability to serve as the primary liaison between the enterprise architect and the systems security engineer and coordinates with system owners, common control providers, and system security officers on the allocation of security controls as system-specific, hybrid, or common controls.

- Ability to design security architectures.

- Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

- Knowledge of Business Continuity and Disaster Recovery of operation plans.

- Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, SSL security).

- Knowledge of Industrial control systems used for port operations.

- Knowledge of industry-standard and organizationally accepted analysis principles and methods (ISC-62443 certification is preferred).

- Knowledge of the enterprise Information Technology (IT) architectural concepts and patterns (e.g., baseline, validated design, and target architectures).

- Knowledge of remote access technology concepts.

- Knowledge of communication methods, principles, and concepts that support the network infrastructure

Excellent stakeholder management and interpersonal skills at both a technical and non-technical level with an ability to influence

- Ability to manage conflicting priorities and multiple tasks

- self-starting and can-do attitude

- Able to create a collaborative environment

- Excellent written and verbal communication skills for both technical and non-technical audiences, with ability to articulate complex ideas in a concise manner

- High attention to detail

- Ability to drive process teams to understand reporting situation, explores options and come to consensus on preferred solution

Classification: Internal

- Ability to work with offshore stakeholders

Desired Skills & Experience - (ISC-62443 certification is