Hi,
Greetings from Ampstek
I would like to share the job description of a Contract opportunity for Security Architect
Job Title: Security Architect
Location: Lake Forest, Illinois.
Contract : Long time
Job Description:
We are looking for a Security Architect to assess, design, implement, secure and support our manufacturing IACS (OT/IT) infrastructure. You will be part of a security engineering team that is responsible for designing and developing scalable, maintainable, secured infrastructure for our OT/IT systems in manufacturing plants that meet business objectives and SLAs.
Requirements
- Candidate should have experience of Threat management, Vulnerability Assessments and Penetration Testing for at least 3 years, with overall 10 years in security domain.
- Three or more years of cyber security experience
- Should have knowledge of ISO 27001, NIST SP 800-82 IEC 62433 Standards
- Two or more years of experience in application of cybersecurity in a building automation or an industrial operation, such as electrical or mechanical systems
- In depth understanding with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS);
- - In depth understanding of operating systems, network/system architecture and design, LAN/WAN implementation, and Windows/Linux environments
- - Should have experience in transforming flat networks to segmented network
- - Candidate should be aware of ISMS audit process and aware of compliance standards like NIST, SANS and methodologies of OWASP TOP 10, CWE etc.
- - Demonstrates Thorough Knowledge And/or Proven Record of Success In Security Technologies Such As Firewalls, IDS/IPS, Endpoint Security Solutions, Access Control Systems, And Other Related Security Technologies Within ICS Environment
- - Understanding of IT and OT network communication protocols (including Ethernet, TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET) and ability to perform packet analysis
- - Understanding of threats, vulnerabilities, and exploits in ICS environments and appropriate mitigation techniques.
- - Good analytical skills
- - Hands on knowledge of Microsoft Office Skills
Must have
§ Implemented ISO 27001 Standards in Industries and possess knowledge of ISO/IEC-62443 or DHS INL/EXT-06-11478 standards
§ Experience on popular security tools – Nessus, Burp suite etc.
§ Expertise of ICS, OT, SCADA, Protocols like CAN, MODBUS, UART, SPI etc used in industrial systems
§ Experience of KALI Linux, Metasploit
§ Experience of OWASP tools and methodologies
§ Possess current security certifications (e.g., CISSP, CEH, CISA, CISM)
Preferred Skills
Demonstrates thorough knowledge and/or proven record of success designing and implementing security solutions for industrial control Systems (IACS) in critical infrastructure and/or manufacturing sectors, such as power and utilities, oil & gas, chemical, and consumer products manufacturing. The ideal candidate will possess an understanding of ICS/OT fundamentals, including but not limited to:
1. Knowledge of manufacturing systems Networks on the Shop Floor both Wired & Wireless machine to machine and from plant floor to Enterprise.
2. Understanding of ICS design considerations with emphasis on human safety and the availability/security of operating environment.
3. Preparation and maintenance of policies, procedures and standards governing the security operations for ICS systems and networks.
4. Demonstrated ability to effectively communicate, verbally and in writing with team members, managers, and clients, in one-on-one sessions up to group gatherings of 100+, on highly-complex and difficult engineering/software issues pertaining to assigned tasks
5. Excellent interpersonal skills and clearly demonstrated leadership experience, such as project management and team lead, for more than 2 years
--
Thanks & Regards
Guru
Technical recruiter
Direct no: 609- 785- 3230
Fax No:- 732-909-2441
No comments:
Post a Comment
Thanks
Gigagiglet
gigagiglet.blogspot.com