HTP Global Tech
Job Title : IT & OT Cybersecurity Consultant
Working Hours : General shift (07:30 to 04:30PM) Sun to Thu.
Notice Period : Immediate/15 days
At least 10 years of experience in Cyber Security inclusive of IT/OT Cyber Security Governance and Technical.
Bachelor’s degree in Instrumentation & controls engineering, Electronics & Communications, Electrical Engineering, Computer Science or related technology driven degree.
Cyber Security experience within energy or other industrial sectors will be preferred.
Requires strong interpersonal communications, organizational and written / verbal communication skills.
Working knowledge and understanding of ICS/OT systems including SCADA, PLCs, RTU, DCS, MES, Control system architectures.
Experience in design, implementation and packet analysis of IT and OT network communication protocols.
Experience of firewalls, IDS, Access Control and SIEM/SOAR technologies.
Experience in designing and conducting Cyber Security Awareness Sessions.
Hands on experience with ICS threats and vulnerabilities assessments and remediation.
Experience in implementation and assessment of cyber security standards.
Experience with Project Management methodologies, concepts, and tools (PMP designation would be considered an asset)
Knowledge and experience of working with Cyber Insurance companies and brokers.
Role & Responsibility:
1.Develop a comprehensive industrial automation and control system security framework which will consist of set of policies and high-level procedures.
2. Review the existing policies, procedures with stakeholders and align them with the SA Cyber Security Management System (CSMS) framework. The developed CSMS should be in alignment with the Local regulations like AER and global standards and best practices like ISA 62443, NIST 80-82, NERC CIP.
3. Establish and govern the CSMS by defining and measuring metrics i.e. KPI’s as applicable.
4. Maintain the evidences and build the cyber security compliance culture.
5. Establish and maintain communication channels with stakeholders as per the cybersecurity initiatives.
6. Develop and submit the compliance and annual reports to SA Management.
7. Develop a compliance checklist and tracker to manage the systems compliance.
8. Develop a road map to manage the cybersecurity capability and maturity management.
9. Implement and maintain the cyber risk management framework and program. Ensure the program is aligned to protect the SA IT & OT assets from cyber risks.
10. Develop and deliver Cyber Security Awareness Program to all SA employees and contractors.
11. Review and enhance third-party contracts from Information Security perspective and
ensure they are compliant with Cyber Security standards.
12. Manage IT/OT asset ‘s vulnerability and apply appropriate remediations.
13. Ensure all the assets are hardened and security baseline configuration is applied.
14. Work closely with Cyber Insurance companies and brokers to achieve Cyber Security
Insurance for SA.
15. Address security issue identified by internal/external audits and work with the business units to mitigate risk and apply compensating controls.
16. Work with the SA team to develop and review requirements for all hardware and software related to the cyber security and act as an advisor.