13193 ICS Cyber Security Engineer

1. Deploy and maintain network infrastructure devices (e.g., switches, routers, etc.), security appliances (e.g., firewalls, IDS, IPS, etc.), and virtualization solutions.

2. Review network and security products to ensure proper configuration.

3. Review security policies and develop operational instruction manuals.

4. Manage the hardware and software security lifecycle.

5. Create detailed diagrams (e.g., network, cabling, server, rack, logical architecture) and procedures (e.g., implementation, SAT, POC, mitigation) to support projects.

6. Inventory hardware and software assets, assessing them for security vulnerabilities, obsolescence, and risks.

7. Review network architectures for best practices (e.g., zones & conduits, network segmentation, Industrial DMZ) and recommend improvements to comply with cybersecurity frameworks.

8. Participate in change management processes.

9. Provision and de-provision OT system access.

10. Ensure data and infrastructure are protected by appropriate security controls.

11. Troubleshoot security and network issues in ICS/OT environments.

12. Review security controls and recommend mitigations for identified risks.

13. Ensure compliance with organizational and governmental cybersecurity policies.

14. Participate in ICS projects to ensure cybersecurity requirements are met.

15. Provide technical guidance as a cybersecurity subject matter expert for industrial control systems.

16. Identify vulnerabilities, recommend patches, and support cybersecurity patch deployment.

17. Perform daily administrative tasks, reporting, and communication with relevant departments.

18. Employ secure configuration management processes.

19. Define system security context, operations, and baseline requirements aligned with policies.

20. Understand OT protocols such as Yokogawa VNet IP, ModBus, and OPC.

21. Participate in ICS security incident response and investigations.

22. Use cyber defense tools to monitor and analyze system activity for malicious behavior.

23. Test and identify network and system vulnerabilities.

24. Perform vulnerability/penetration testing and threat hunting in ICS/OT environments.

25. Collaborate with threat intelligence analysts for threat assessment.

26. Provide regular reports on information security issues.

27. Lead or support technical resolutions to plant issues related to cybersecurity.

28. Participate in multidisciplinary teams to address major concerns or improvements.

29. Document lessons learned from cybersecurity events.

1. Bachelor’s degree in IT, Computer Science, or Computer Engineering.

2. Certified SCADA Security Architect (CSSA).

3. GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection).

4. ISA/IEC 62443 cybersecurity certificates.

5. Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT).

6. Knowledge of network components, security controls, and risk assessment methods.

7. Understanding of relevant cybersecurity legislative and regulatory requirements, ethics, and privacy principles.