Key skills
Cyber SecurityFirewallsRisk Management
About this role
Role Overview
- Develop security requirements, architecture, and design for complex OT systems
- Develop cyber security assessment approaches
- Specify and implement a robust security risk management process
- Support accreditation activities with the client and regulating authorities
- Conduct security reviews and risk assessments in accordance with IEC 62443
- Provide technical assistance to business development
- Maintain familiarity with legislation and regulations of relevance
- Build and maintain relationships with internal and external stakeholders
Requirements
- Experience in similar roles or transferable skills within a similar role
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Management (CISM) qualification
- SANS Global Industrial Cyber Security Professional (GICSP) would be a plus
- Able to travel to the client site on a semi-regular basis, averaging two to three days per week
- Cyber Security work experience (with a significant focus on Operational Technology during that time)
- Practical experience of IT and OT cyber security risk/threat assessment approaches
- Understanding of design considerations with emphasis on operational safety and the availability/security of operating environments
- Working knowledge and hands-on experience in a variety of operating systems and Operational Technology environments
- Experience of security engineering and associated solutions (Endpoint Protection, IDS/IPS, Firewalls, etc.) for IT and OT environments
- Working knowledge and understanding of networking technologies including architectures, key components, and common IT/OT protocols
- Certifications – Cybersecurity & Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Training, AttackIQ – MITRE ATT&CK, SANS Global Industrial Cyber Security Professional (GICSP), Certified Information Systems Security Professional (CISSP)
- Standards, frameworks, and regulatory experience including – EU NIS Directive, ISA/IEC 62443 Series / ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), NCSC CAF, Office for Nuclear Regulation (ONR) Security Assessment Principles, Technical Assessment Guides, and supplementary guidance
Tech Stack
- Cyber Security
- Firewalls
Benefits
- free single medical cover and digital GP service
- family-friendly benefits such as enhanced parental leave pay
- free membership of employee assistance and parental programmes
- reimbursement towards relevant professional development and memberships
- matched-funding, paid volunteering time and charitable donations