OT Security Specialist
Houston, TX, US
L&T Technology Services
Global ER&D & Digital Engineering partner to address your Smart Products, Manufacturing & Operations needs. Our proven platforms for AI, 5G, smart buildings have...Job Description & Skill Requirement:
• Assist in developing a cybersecurity framework aligning to cyber security standards like IEC 62443, NIST 800-82, ISO 27001, etc.
• Serve as a subject matter expert on OT security, providing technical guidance and support. Assist in the design and implementation of secure OT architectures, systems, and networks.
• Perform gap assessment against standard security controls and provide recommendations to address the gap, define the target state and a roadmap to achieve the target state.
• Evaluate the risk posture of OT systems and infrastructure, including identifying potential threats, vulnerabilities, and impacts. Develop risk mitigation strategies and work with customers to prioritize and address identified risks.
• Work closely with client stakeholders, including IT teams, operations teams, and executives, to align OT security initiatives with business goals. Collaborate on projects, change management processes, and risk management activities.
• Create design documents like HLD, LLD, etc. for various security solutions like OT Network Monitoring, Secure Remote Access, Patch Management, OT firewall, Endpoint Security, etc.
• Assist in defining a TO-BE network architecture for various process environments to enable them with central security services or managed Security Operations Centre.
• Continuously monitor and research the latest OT security threats, vulnerabilities, and technologies. Stay abreast of industry developments and emerging solutions to provide clients with the most current and effective security strategies.
Experience, Skills and Qualifications
• A bachelor's or master's degree in a relevant field. Advanced certifications in cybersecurity and OT security, such as Certified Information Systems Security Professional (CISSP), ISO / IEC 62443 Cybersecurity Expert, or GIAC Global Industrial Cybersecurity Professional (GICSP), are highly valued.
• Significant 7-11 years of experience working specifically in the field of OT security, preferably in a consulting or advisory capacity. Hands-on experience with conducting OT security assessments, developing security strategies, implementing security controls, and assisting with incident response is highly desirable.
• A strong understanding of operational technology (OT) systems, including industrial control systems (ICS), supervisory control and data acquisition (SCADA) systems, and associated protocols (e.g., Modbus, DNP3). Familiarity with OT-specific security challenges, standards, and best practices, such as IEC 62443, is essential.
• Proficiency in conducting risk assessments, vulnerability assessments, and compliance audits in OT environments. Familiarity with relevant security frameworks and standards, such as NIST Cybersecurity Framework, ISO 27001, and regulatory requirements specific to OT (e.g., NERC CIP), is beneficial.
• Strong technical skills in areas such as network architecture, network protocols, firewalls, intrusion detection/prevention systems, malware analysis, and digital forensics. Experience with security assessment tools and technologies, penetration testing, and security monitoring.
• Knowledge of implementation of different OT security threat detection solution platforms.
• Excellent communication skills, both written and verbal, with the ability to convey complex security concepts to technical and non-technical audiences. Strong consulting and client-facing skills, including the ability to build relationships, provide actionable recommendations, and deliver presentations to stakeholders at various levels of the organization.
• Strong analytical thinking and problem-solving skills, with the ability to identify security risks, analyze complex systems, and develop effective solutions.
Qualification:
- Bachelor's or master's degree in Information Technology or Computor Engineering
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISSP Compliance DNP3 Endpoint security Firewalls Forensics GIAC GICSP ICS IEC 62443 Incident response Industrial Intrusion detection ISO 27001 Malware Modbus Monitoring NERC CIP NIST Pentesting Risk assessment Risk management SCADA Security assessment Threat detection Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Editor jobs
- Open IT Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Information Security Architect jobs
- Open Security Operations Analyst jobs
- Open Security Consultant jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DoD-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open SaaS-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs