Posted in Other 12 days ago.
Location: Des Moines, Iowa
Job Description
This is a multi-level posting. Candidates may be considered for any of the posted levels, depending on their level of experience and depth of expertise.
The operational technology security engineer 2 or 3 manages and maintains security systems (vulnerability scanning, passive network monitoring, data aggregation and reporting, etc) and security technology in OT / industrial control system environments. Conducts analysis, creates system specifications, develops, tests and implements new monitoring and control systems. Supports Supervisory Control and Data Acquisition systems (SCADA) and Distributed Control Systems (DCS). With minimal guidance and oversight researches and deploys new commercial/open-source security (OSS) tools and projects to meet security requirements and develop in-house solutions using OSS and custom code. Provides technical assistance/consulting to enable the company to meet security goals and requirements.
Responsibilities
Perform hardware installations, upgrades, operating systems and application software installations and upgrades, backup and recovery administration, maintaining users and peripheral equipment, troubleshooting system and application issues. (20-40%)
Ensure operational adherence to the Center for Information Security Critical Security Controls, Information Security Management Systems and ISO 27001 certification programs for the enterprise. (15-30%)
Maintain the Operational Technology Vulnerability Scanner, passive network monitoring system, data aggregation and reporting and other Operational Technology Security assets as needed. (10-40%)
Perform vulnerability scans against OT internal and external targets, both scheduled and ad-hoc in response to internal or external concerns. Use additional data (system logs, network context, etc) to analyze and prioritize identified risks in concert with asset owners. (10-40%)
Ensure adherence to various regulatory and policy requirements, including the Critical infrastructure Protection Standards (CIPS) (5-15%)
Stay abreast of current security trends, and identify new technology that could provide value to the organization. Research/evaluate, acquire/develop, and deploy new OT Information Security systems, either as standalone systems or as part of larger corporate projects. (5-15%)
Provide timely and accurate cross-platform support in response to security threats that may arise that poses a risk to systems across the companys computing enterprise, including forensic investigations. (5%)
May act as a lead within a work group; train and mentor level 1&2 OT security engineers. (0-5%)
Perform additional responsibilities as requested or assigned (0-5%)
Qualifications
Bachelors degree in Computer Science, Information Technology, or related field; or equivalent work experience. (Typically four years of additional related, progressive work experience would be needed for candidates applying for this position who do not possess a bachelors degree.)
A minimum of two years additional directly related technical experience is required.
A minimum of three years of experience working with Industrial Control Systems (ICS) or a manufacturing environment.
Demonstrated knowledge of security principles through achievement and/or active pursuit of advanced security certification including CISM or CISSP.
Excellent system administration skills on Windows and Linux systems. Exposure to programming languages such as PERL as well as open source security tools such as SNARE, SNORT, etc.
Advanced technical knowledge of complex database, network software, and disaster recovery practices.
Demonstrated knowledge of operational technology terms, equipment, systems, functions, and major vendors.
Excellent oral and written communication skills, including presentation skills.
Effective interpersonal skills and customer relationship skills. Effective analytical, problem-solving and decision-making skills.
Project management skills; ability to prioritize and handle multiple tasks and projects concurrently.
Availability as a resource for problem resolution on a rotating 24-hour basis.
Preferences: Knowledge of Energy Management Systems / Supervisory Control and Data Acquisition systems. Experience with integration and administration of physical security technology.
Employees must be able to perform the essential functions of the position with or without an accommodation. We celebrate diversity, equity and inclusion, and we are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or religious creed, age, national origin, ancestry, citizenship status (except as required by law), gender (including gender identity and expression), sex (including pregnancy), sexual orientation, genetic information, physical or mental disability, veteran or military status, familial or parental status, marital status or any other category protected by applicable local, state or U.S. federal law. Position descriptions are developed as guides for the employees of Berkshire Hathaway Energy. The management team of Berkshire Hathaway Energy reserves the right to modify job responsibilities and position requirements to meet the corporate business goals and needs.
PI240114078
Salary: $87.00
|
Beacon Hill Staffing Group, LLC
|
|
Beacon Hill Staffing Group, LLC
|
|
symplr
|
