ICS Network Security Engineer - The Centrics Staffing Group

As an OT/ICS Cyber Security Specialist, you will be responsible for implementing and monitoring cyber security solutions, maintaining the cybersecurity posture of the ICS/OT environments to mitigate security risks. The role will help drive some of the implementation and strategic opportunities issued by the office of the Chief Information Security Officer. 

Role Responsibilities

Work with mill and plant engineering SMEs and operational staff to design, implement and support the security of ICS networked systems.

Participate in security requirements, network design reviews, and security testing for networks, systems, and applications.

Evaluate new security technology & emerging threats and provide recommendations to strengthen the OT security environment.

Utilize existing and newly deployed OT security solutions to perform threat assessments, substantiate security incidents, and effectively respond.

Evaluate available vendor security solutions to determine how they should be deployed in the OT environment.

Consult on ICS security matters as needed and liaison between operations and corporate IT security teams.

Respond and participate in ICS security incident response through phases, including investigating computer and network intrusions and remediation support.

Perform proactive research to identify, categorize and produce reports on new and existing threats.

Monitor industry ICS trends and recognize opportunities for new and emerging technologies

Ensure compliance with applicable NERC and corporate security standards

Skills and qualifications

Bachelor’s Degree or equivalent in a related field of study (including any of the following but not limited to):  Information Systems, Network or Electrical Engineering, and Information Security.

5+ years of hands-on experience within the Industrial Controls Systems environment.

4+ years of previous experience developing and deploying mitigation techniques to defend networks.

In-depth understanding of operating systems, network/system architecture, and IT architecture design.

Experience with security control frameworks such as NIST CSF, 20 Critical Controls, or ISO 27002

Experience in troubleshooting system integration issues and working with security, network, and ICS technologies to implement secure solutions

Experience with maintaining documents, policies, and standards governing the security operations for ICS equipment and networks.

Experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS).

Network and system security architecture expertise.

Understanding IT and OT network communication protocols (including TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET).

Knowledge of IT and OT security best practices and knowledge of the differences.

Understanding threats, vulnerabilities, and exploits in ICS environments and appropriate mitigation techniques.
Superior organization and follow-up skills.

Excellent verbal and written communication skills

Technical Certifications (Examples: Security+, CCSP, CISM, CISSP, etc.)