|
الوصف الوظيفي Manage patch deployment for Windows devices in network levels 0 through 3.5 as well as standalone devices. Identify obsolete Operating Systems (OS) and plan for necessary upgrades through vendor consultation. Consolidate standalone devices (e.g. laptops used for PLC configuration). Prepare for the company’s internal ICS audit by completing configuration review sheets for all workstations, servers, switches, firewalls, and routers in the OT environment. Correct deficiencies and document deviation/remediation plans. Prepare for the company’s internal ICS audit by participating in and documenting compliance of all workstations, servers, switches, firewalls, and routers in the OT environment with company policies and procedures. Participate in the design of cyber solutions for the OT environment (e.g. SIEM, IPS, ATP). Monitor patch deployment, anti-virus, SIEM, IPS, ATP and related systems and respond/investigate alerts. Perform detailed, post event analysis of cyber events, and direct needed Incident response procedures Perform detailed technical analysis of Industrial Control Systems (ICS) and cyber security controls. Participate in vulnerability assessments and administrative audits on client computer systems ans network devices considering the sensitivity of Operational Technology testing. Identify cyber security gaps and recommend mitigation strategies to address gaps. Maintain knowledge of the cyber security capabilities of operating systems, networking devices, control systems, and vendor offerings. Maintain a broad knowledge of current and emerging state-of-the-art computer/network systems technologies, architectures, and products. Resolve technical issues considering operating impact, and be able to communicate issue resolutions to OT organizations Secure operational technology networks. Design comprehensive technical solutions that meet compliance requirements and implement the appropriate software to mitigate critical security risks (e.g., system and antivirus software, encryption modules, patch management programs, insider threat protection, incident response plans, forensic capabilities, and regulation compliance). Lead collaboration efforts with other cyber security experts on team to develop well-constructed approaches to ICS risk management, mitigation, and monitoring strategies. Responsible for securing systems running ICS-related communications protocols (e.g., MODBUS, PROFIBUS, etc.). Develop simulated ICS environments within a virtual infrastructure. Prepare Work Permits in support of ICS/OT job activities. المهارات Required (Years2 / Job Level3 / Industry): 5+ years’ experience in control systems engineering, DCS/PLC/SIS support, instrumentation maintenance, or related operational role Oil & Gas or chemical manufacturing environment. 7+ years’ experience in control systems engineering, CISSP Certified – Certified Information Systems Security Professional. GICSP Certification preferred, Global Industrial Cyber security Professional MCSE Certified preferred – Microsoft Certified Systems Engineer Experience with at least one of the following DCS systems: Emerson, Honeywell, or Yokogawa. Experience in the Oil & Gas or chemical manufacturing environments. Excellent interpersonal and group dynamic skills. Strong written and verbal communication skills. Knowledge of ICT Qatar’s National ICS Security Standards تفاصيل الوظيفة
|