Senior Security Consultant advising clients on Cyber Security, GRC, and regulatory requirements. Leading projects and developing security structures for modern IT landscapes.
About the role
- Cybersecurity Specialist at TechnipFMC providing oversight for IACS security. Defining and enforcing security controls for industrial control systems and collaborating across teams.
Responsibilities
- Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation.
- Provide cybersecurity awareness and training within product development and ICS environments.
- Provide support to write, review, and maintain documents, policies, and standards governing the cybersecurity requirements for the ICS environment.
- Provide secure architecture requirements for lab and development networks.
- Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments.
- Assist with testing, selection and implementation of security technologies in ICS environments.
- Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner.
- Provide support for management and remediation of vulnerabilities identified in ICS environments.
- Acts as subject matter expert in Industrial Automation and Control Systems security.
- Support on the development of cybersecurity technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments (e.g. Anti-virus on HMIs, application whitelisting, security policies for firewalls in ICS environments, etc.).
- Support the execution of risk based methodologies for cybersecurity assessments of ICS systems, including remote sites, onsite, third party, and on vessels.
- Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding.
- Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cybersecurity program.
- Stays informed about the latest cyber threats to the ICS environment including threats towards the organization.
- Supports on the development of strategies and plans to mitigate emerging cyber threats.
Requirements
- Bachelor’s degree or equivalent
- Strong technical ICS experience (5 years +)
- Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux)
- Understanding of Industrial Networks
- Experience using ICS software including: Engineering Software Version Management Software HMI Software OPC Software
- Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls).
- Good writing/presentation skills
- Fluent in English
- Cybersecurity certifications (e.g.: CISSP)
- ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist)
- Experience implementing security controls, hardening, and technologies in automation systems and networks.
- Experience implementing vulnerability and patch management in ICS environments.
- Working knowledge of IACS Security standards.
- Willingness to travel to other TechnipFMC sites (5%).
Benefits
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
IT Security Consultant providing technical consultation on Cyber Security projects in various areas including SIEM and Cloud Security. Working in a hybrid role across multiple locations in Germany.
Global Information Security Governance, Risk & Compliance Analyst at Autoliv Romania. Support security compliance activities, foster adherence to frameworks like TISAX and SOX.
Senior Security Detection Engineer providing expertise for RBC's Global Cyber Security. Develops automation for security use cases to enhance detection and response capabilities.
Agent de sécurité humanitaire coordonnant des programmes de sécurité et d'accès en Colombie pour l'IRC, avec un focus sur le soutien aux communautés vulnérables.
Data Security Specialist at MUFG enabling secure use of data across emerging technologies. Managing data security posture and collaborating with stakeholders on data protection strategies.
Principal Product Security Engineer at MYOB using skills to help businesses thrive and shape the future of work. Collaborating with team members to enhance security and customer experience.
Consultant for Network Security Solutions focusing on project management and customer workshops in network security. Engaging with high - tech security solutions for international clients.
IT Consultant specializing in Microsoft 365 and Azure Security solutions with project and client management. Responsibilities include technical workshops, migration planning, and system documentation.
Security Engineer managing security applications and systems for client support at Leonardo. Collaborating on detection and prevention measures in cybersecurity across multiple locations.