Lead Network & Cybersecurity Engineer Job Description Summary Job Description Additional Information

Lead the design of secure networks and Communication Architectures of the HVDC Control System from concept to commissioning based on the principles set out in IEC 62443-3-3. Serve as the point of contact for all cybersecurity and networking matters in a project environment, including evaluating solutions from 3rd party suppliers interfacing with the control system.

• Lead the design of secure networks and Communication Architectures of the HVDC Control System from concept to commissioning based on the principles set out in IEC 62443-3-3.
• Act as the point of contact for all matters related to cybersecurity and networking in a project environment, including evaluating 3rd party supplier solutions interfacing to the control system.
• Support Tendering teams during bidding for cybersecurity and networking requirements from customers. Knowledge of cybersecurity regulations such as EU NIS, NERC, and BDES is essential.
• Ensure Secure Deployment Guides for the HVDC Control System and 3rd party interfaces are adhered to.
• Ensure Security Assurance Plans are followed by all relevant project stakeholders throughout the project duration.
• Define IP address strategies for the complete control system.
• Perform hardening in a substation environment as required.
• Share engineering information and promote open dialogue.
• Ensure documentation of technical data generated for assigned projects is in line with engineering policies and procedures.
• Assist site activities related to installation and commissioning of the control system LAN network.
• Oversee testing and FAT witnessing of the Control System.
• Lead Network & Cybersecurity Engineer requirements and coordinate delivery of design, configuration, and testing to meet schedule and budget.
• Follow the department's standard design practices, engineering reviews, and guidelines.

• Familiarity with the patch management process to correct vulnerabilities.
• Ability to map requirements between different cybersecurity standards.
• Analytical skills to evaluate different cybersecurity and networking solutions and justify decisions to customers and technical audiences.
• Capability to build functional infrastructure from the ground up (Networking, virtualization, and server OS configuration).
• Knowledge of the process for monitoring vulnerability publications and handling confidentiality levels of documentation.
• Knowledge of IEC 62443 standard, mainly parts 4-1, 4-2, 3-3 and 2-4.
• Experience with virtualization platforms such as VMware, HyperV and Proxmox.
• Knowledge of industrial protocols (IEC 61850, IEC 101/104, PTP, OPC UA, DNP3, Modbus TCP/IP) and methods to diagnose/debug using Wireshark.
• Experience configuring server operating systems (e.g., Windows Server).
• Experience configuring next generation firewalls (e.g., Fortinet).
• Experience with Intrusion Detection Systems (e.g., Nozomi, Radiflow).
• Experience with anti-malware, patch management, and disaster recovery tools.
• Experience with network monitoring and management.
• Familiarity with standard cyber topics such as VPN technologies, Secure Network Access, Endpoint Security, and Network Infrastructure Protection.