Senior Cyber Security Engineer (Energy sector)

Salary
Negotiable
16.08.24
city of Sofia
Position
Employment
Work Type
Listing by

For a partner of ours – a British energy company, a leader in the power generation business, we are looking for an experienced Cyber Security Engineer to join their team of Cybersecurity and Operations professionals.

ABOUT THE ROLE:

The Cybersecurity Architecture Senior Engineer reports to the Deputy Chief Information Security Officer and is responsible for deploying cybersecurity infrastructure and supporting the deployment of company technology per cybersecurity architecture templates and standards. This position is also a key member of the Cybersecurity Incident Response Team of the organization.

KEY RESPONSIBILITIES:

Design and configure the organization’s cybersecurity infrastructure by cybersecurity architecture standards.

Design and support deployment of cybersecurity controls for company IT and OT technology platforms and networks.

Planning, implementation, testing, maintenance, and upgrade of cybersecurity infrastructure and technology platform cybersecurity controls.

Troubleshoots cybersecurity infrastructure and control problems.

Develop defined actionable cybersecurity controls implementation guidelines and required levels of protection that align with company enterprise-level cybersecurity risk and control framework.

Support cybersecurity incident response.

Support IT and OT change management process.

Testing and identifying network and system vulnerabilities.

Develop defined actionable cybersecurity controls implementation guidelines and required levels of protection that align with the company enterprise-level cybersecurity risk and control framework.

Conduct periodic assurance reviews across all cybersecurity infrastructure and IT and OT platform controls to ensure that designs are built and implemented to the agreed cybersecurity architecture.

Collaborate with the Cybersecurity GRC function to process and evaluate cybersecurity architecture and design exception requests.

OTHER ACTIVITIES:

Collaborate with the cybersecurity leadership team to ensure appropriate enterprise-level cybersecurity systems and tools align with cybersecurity strategy and are reflected in the cybersecurity program roadmap.

Maintain a formal enterprise-wide required and preferred IT and OT security tools and architecture library.

Advise corporate IT/OT functions, plant operational management, and business stakeholders on cybersecurity vendor and tools selection, with emphasis on ensuring that tools address business entity requirements and maximize reusability.

Develop action (project) plans for cybersecurity systems and controls within enterprise systems, aligned to the organization’s cybersecurity strategy and enterprise cybersecurity roadmap.

COMMIT TO LEAD WITH OUR VALUES:

Commit to the organization’s values as expressed in the Essential Information. Model the values in any interaction internally and externally

Put Health and Safety First

Embrace Timely Transparency

Model of Communication, Collaboration, and Coordination;

Embrace Failure analysis and continuous improvement including Five Whys;

Seek out ways to incorporate technology and Artificial Intelligence into the company’s legal practice.

QUALIFICATION AND SKILLS:

Minimum of 5 years in Cybersecurity operations ideally within the Energy sector

A degree in computer science, IT, systems engineering, or related qualification

Highly collaborative with the ability to articulate ideas and influence peers and senior leaders

In-depth knowledge of cybersecurity design and implementation practices, ideally within the Electric Utilities or similar industry sectors with critical infrastructure OT environments

Expertise with a wide variety of cybersecurity vendors and tools, and experience designing and managing vendor evaluation processes

Knowledgeable about cyber attackers tactics, techniques and procedures (TTP)

Strong analytical and critical thinking skills

Proficiency in analyzing and solving problems

Ability to interact effectively with stakeholders, including senior management, and representatives from other functions of the organization

Team player, motivated to help others, and comfortable giving and receiving feedback

Flexible, resilient under pressure, and decisive, with a proven track record of delivering results to a high standard within tight deadlines

Willingness to travel to company facilities as required (20%)

Certified Information System Security Professional (CISSP) certification

Experience with OT / ICS / SCADA environments;

SANS courses: Purple Team curriculum is desirable;

Global Industrial Cybersecurity Professional (GICSP) certification is desirable;

Certified SCADA Security Architect (CSSA) certification is desirable.

Please send us your CV, and our specialist will contact you!

Our services are free of charge for candidates. All applications will be treated with strict confidentiality. Easy Consult Recruitment and Employment activities are based on a Recruitment license 2339/ 30.08.2017.

Views: 39