As a key member of a global and matrixed design team, Lead Cybersecurity engineer is responsible for leading the security testing for GEPC products and analyzing the reports, conducting risk assessment meeting with global stakeholders, supporting on tendering process for cybersecurity projects, leading cybersecurity projects from engineering to FAT as per GEPC project lifecycle.
Essential Responsibilities:
Lead reviews, suggest architectural changes, conduct tests to ensure systems, controllers, and Cloud platform meet Cyber security requirements. Collaborates with a team of controls and system engineers developing operational software for various subsystems. The position requires a clear understanding of OT System ,cloud application architecture and conversant with all Cyber security requirements.
This role requires strong cooperation with system and subsystem teams necessary for command and control of the systems involved. The architect should be comfortable making design decisions in a sometimes-uncertain context, crafting innovative solutions, and demonstrating rigorous and decisive leadership. Work with multiple teams in different location to deliver Cyber secure software to meet customer requirements.
As the Lead Cyber security Engineer, you will:
Collaborate with system and subsystem leads to define and develop top level software requirements, architecture and design
Facilitate decisions and bring teams together to design and document software architecture, modularity, and future- proofing
Lead development of proofs-of-concept to prove out strategy and manage development and product risks Spearhead software design reviews and ensure software adherence to standards / architecture principles Champion testing and validation of critical architecture and interface requirements for real time controls system software as well as application tools
Own production of technical documentation for software architecture, design, verification plans
Lead and mentor software and development engineers
Contribute to multi-generation product and tool planning
Ensure all software developed is compliant to Cyber-security requirements.
Qualifications / Requirements:
Bachelor /master’s degree in computer science or relevant engineering or equivalent knowledge / experience with 10+ Years of Experience in OT and cybersecurity.
Experience in Cyber security for controller, Systems in OT Space and in Cloud architectures
Familiar with penetration testing for controllers, Systems, Web software’s, CAPEC, Ethical hacking
Familiar with fundamentals of cryptography
Worked on Cyber security tools and solutions like Wireshark, NESSUS, Burp Suite, Nmap, Nozomi, Claroty, Splunk, Acronis, Ivanti, etc.
Worked on active directory, certificate management and hardening w.r.t CIS benchmarks for critical assets like switches, windows-based workstation and controllers.
Familiar with ISA/IEC 62443 standards and ABS guidelines.
Familiar with threat modeling and risk assessment for OT products
Familiar with firewall, SIEM, NIDS, HIDS configuration and deployment.
Experienced in different phases of Software Development Life cycle (SDLC) including Design, Implementation and Testing during the development of software applications.
Certifications like CCNA, CEH, Security+, CISSP, GICSP, PNPT will be an added advantage.
Desired Characteristics:
Experience in software development including system design, requirement gathering, software development and verification, build and release, documentation.
Experience in build automation, continuous integration, configuration management, verification, deployment of software
Experience in database design and version control repository-based applications
Demonstrated track record of success with excellent technical written and verbal communication skills.
Proven project management experience
Leadership experience in a research and development environment
Relocation Assistance Provided: Yes
Job Description Job Description (Posting). Good knowledge on Business Continuity Planning & Disaster Recovery. Develops and maintains a business recovery...
Apply For This JobJob Description Job description IT Security Analyst Are you enthusiastic about IT security and ready to take on the challenge...
Apply For This JobJob Description : IT Principal Software Engineer- Infrastructure Security Automation – Vulnerability and Risk ManagementJoin us as an IT Principal...
Apply For This JobWe, Nair Systems, are a QFC based, boutique leading edge technology consulting and professional services firm focusing on Digital Banking,...
Apply For This JobRisk Advisory Cyber Risk What impact will you make Every day, your work will make an impact that matters, while...
Apply For This JobJob Description Key Responsibilities 1. Conduct periodic Risk Assessment, review the identified/open risk and guide the client engagements and support...
Apply For This Job