OT Cyber Security Lead - Industrial Control Systems & Automation Technologies (5-10 yrs)

OT Cybersecurity Lead

Location : Ahmedabad, India (with requirement to travel across the globe)

Experience : 7 to 12 years

Job Purpose :

As OT Cybersecurity Lead you will be responsible for leading various functions of OT cybersecurity :

countermeasures administration, managing system control, and system hardening as well as developing frameworks and strategies for vulnerability management, incident response and cyber forensics in the OT environment. You will need to have deep expertise in various OT systems and processes of the organization as well as their cybersecurity infrastructure.

You need to design and implement secure system architectures, mitigate cyber threats and vulnerabilities, and perform OT cybersecurity assessments ICS systems with respect to security standards and policy & procedures documentation.

You must be well-versed with security technologies such as network switches, firewall logs, IDS, endpoint security solutions, access control systems, DCS, SCADA and other related security technologies within the OT environment.

You will also need to have insights on cyber response, investigation and operation recovery. You need to display strong leadership attributes in guiding, developing and managing resources within and across the team. You need to be decisive in nature and should be able to manage senior stakeholders well.

Accountabilities :

1. Technical Expertise

- Strategize and outline the OT cybersecurity framework for the ICS environment

- Establish and review security baseline configuration standards for operating systems, applications and network devices

- Work with architects/leads to design & engineer security controls, systems, remote access and architecture for the organization's OT infrastructure according to defined requirements.

- Implement and configure the IT/OT network controls to protect the OT environment.

- Outline testing strategies, plans and playbook for the organization's cybersecurity needs and prepare and run OT cybersecurity assessments.

- Oversee penetration testing and vulnerability assessment activities, focusing on maintaining operations without disruption.

- Approve and track remediation plan status for identified vulnerabilities.

- Recommend policy changes based on the findings from the assessment workshops

- Develop incident response framework, threshold and plans for OT cybersecurity incidents

- Establish the chain of events and processes to be followed for OT cybersecurity incidents

- Correlate OT cyber incidents to network and system activities

- Tailor recovery solutions based on organization's needs

- Define the organization's OT system back up needs and protocols

- Communicate potential vulnerabilities and attack surfaces and work with cybersecurity and operational personnel to identify and recommend security controls for mitigation

2. Documentation and Reporting :

- Document technical specifications, operating procedures, and maintenance procedures for automated systems.

- Prepare method of statement for field related activities.

- Prepare OT cybersecurity countermeasures FAT & SAT procedures.

- Prepare detailed technical documentation, including assessment reports, security architecture designs, and standard operating procedures.

- Provide timely and accurate reporting on project status, including progress, risks, and recommendations.

- Contribute to the development of knowledge base articles and technical documentation for internal and external use.

3. Team Building and Leadership :

- Foster a collaborative and motivating work environment, encouraging knowledge sharing and continuous improvement.

- Provide resources and improve team capabilities in conducting penetration testing and vulnerability assessments in the OT environment

- Ensure certifications and accreditations requirement are met

- Oversee the development of learning roadmaps for teams and functions

- Establish performance indicators to benchmark effectiveness of learning and development programmes against best practices

4. Technical Strategy and Responsibilities :

- Stay updated on the latest trends, emerging technologies, and industry standards in the field of OT cybersecurity.

- Leverage your technical expertise to contribute to the development of customized solutions and proposals for clients.

- Provide technical guidance and support to the sales team during client engagements and solution presentations.

- Support Manager, Head of Practice at Invictux to in Technical Pre-sales

- Contribute to formulating scope of project, resource allocation and designing technical solution

Internal Relationships External Relationships :

1. Technical Delivery team

- Clients

Work Environment :

In Office : 70%

Out of Office (Travel) : 30%

Work Hazard : Normal

Working Days :

Days off : Saturday & Sunday

Working Hours : 5 days per week

Timing : 10 am to 7 pm

Job Qualifications /Requirements :

Education :

- Bachelor's degree in engineering, Computer Science, or a related field.

Experience :

- Experience with industrial control systems and automation technologies, such as PLCs, HMIs, and SCADA
systems.

- Understanding electrical systems and field instrumentation including sensors, motors, and actuators

- Ability to troubleshoot issues with automated systems and networking

- Experience with robotics, AI and machine learning is optional

- Proficiency in maintaining automation equipment

- Expert level hands-on experience with ICS systems of at least 3 of the 4 critical industries

- 3-5 minimum years of experience of cybersecurity.

Skills :

- Strong programming skills in languages such as Python, C++, or Java.

- Strong computer networking skills

- Excellent communication skills

- Willingness to work in a fast-paced, dynamic environment.

- Strong interpersonal, project management and organizational skills with the ability to work independently and in a team-based setting

Tools and Systems :

- Strong understanding of different OT systems, networks, protocols, and security controls.

Trainings & Certifications (Any one or Hands-on experience that is equivalent to any one) :

- CCNA

- CompTia A+

- CompTia N+

- Microsoft Security Certification

- ISA 62443 (Most Preferable)

Manuals and Guidelines - N/A

Licenses - N/A

Language - English

Job Benefits

- Access to OT/IoT Lab and to the latest tools and solutions used in OT cybersecurity.

- Skills development in the OT / IoT & Cybersecurity domain.

- Opportunities for professional development at Invictux.

- Support in acquiring qualifications and certificates.

- Immersive Lab career path development & Mentoring.

- Access to technical courses like Udemy for Business/CBT Nuggets/LinkedIn Learning

- Career Counselor - assigned experienced advisor, who will support your career growth.