Industrial Network Security Engineer
Location
Springfield, VA | United States
Job description
Large natural gas and power company needs an Industrial Network Security Engineer. This role is responsible for providing cyber security support for Industrial Control Systems (ICS)/Operational Technology (OT) environments. The ideal candidate will have a strong understanding of ICS/OT security principles and practices and experience implementing security controls in an ICS/OT environment.
** No Travel * Great Benefits * 401k & 401 Savings Plans * Growth within the company * Bonuses * Hybrid if living close to office **
Responsibilities:
- Deploying and managing a SIEM(security information and event management) and other security monitoring tools to continuously monitor the OT systems for any signs of malicious activities or anomalies
- Tasks within the SIEM include: 1. Analyzing security logs, network traffic, and system behavior to detect potential security breaches 2. Developing parsers for ingestion 3. Developing alerting rules and tuning to reduce false positives 4. Developing automation and scripts 5. Coordinating with SOC team
- Design, implement, and maintain security controls for ICS/OT environments to meet or exceed applicable codes and standards and regulatory requirements
- Develop, implement and maintain security policies and procedures
- Lead and conduct the following types of assessments: 1. Security (using a variety of frameworks) 2. Vulnerability 3. Against internal policies and procedures
- Lead and conduct pen-tests internally and with 3rd party providers
- Provide security guidance and support to ICS/OT personnel
- Stay up-to-date on the latest ICS/OT security threats and trends relevant to industry sector and to specific systems, equipment, and applications within the OT environment
- Effectively investigate events of interest for escalation to incidents, mitigate damages, and implement remediation measures to restore operations promptly
- Collaborate with incident response teams and law enforcement (as needed) to reduce the impact of the incidents
Qualifications:
- Degree in computer science, information technology, or a related field
- 1-2 years of experience in information security, preferably with a focus on ICS/OT security
- Good communication and teamwork skills
- One or more of the following certifications:
- CompTia Network+
- CompTia Security+
- Cisco Certified Network Associate (CCNA)
- Response and Industrial Defense (GRID)
5. Must be a US Citizen
Preferred Qualifications:
- Strong understanding of ICS/OT security principles and practices
- Experience implementing security controls in an ICS/OT environment
- Certifications in ICS/OT security (e.g., CISSP-ISSAP, ISA/IEC 62443)
- Experience with ICS/OT security tools and technologies (e.g., firewalls, intrusion detection systems, SIEMs)
- Experience with ICS/OT protocols and standards (e.g., Purdue Model for ICS networks, Modbus, DNP3, IEC 61850, API-1164, NERC-CIP, NIST SP-800-82, CISA-CPG)
- Trellix "Helix" platform experience (other platforms experience is fine)
Job tags
Salary