Lead Engineer, Cyber Security II

Job Purpose

The Lead Engineer, Cyber Security II, is a senior technical expert responsible for designing, implementing, and optimizing advanced cybersecurity solutions specifically to protect the organization's critical operational assets and infrastructure. This role involves leading complex security projects within industrial domains, developing robust defense strategies for industrial control systems, and ensuring the resilience of our production systems against evolving cyber threats, in alignment with the overall cyber security governance framework.

Key Accountabilities

1. Advanced Security Solution Design & Implementation:

• Lead the design, implementation, and configuration of sophisticated cybersecurity technologies tailored for industrial environments, including industrial firewalls, intrusion detection/prevention systems (IDPS), and specialized security information and event management (SIEM) solutions for industrial control systems.
• Develop and implement secure network architectures, access controls, and encryption strategies to safeguard sensitive operational data and critical production systems.
• Oversee the integration of new security tools and platforms into the existing industrial control system (ICS) and SCADA environments.

• Conduct in-depth analysis of emerging cyber threats, vulnerabilities, and attack vectors specific to operational environments, providing actionable intelligence to enhance industrial defense mechanisms.
• Lead incident response and recovery efforts for complex security breaches within operational systems, coordinating with operational teams to minimize impact on production and prevent recurrence.
• Develop and refine operational security-specific incident response playbooks and procedures.

• Perform regular security assessments, penetration testing, and vulnerability scans specifically targeting industrial systems, applications, and networks.
• Oversee the remediation of identified vulnerabilities in industrial control systems, ensuring timely and effective patching and configuration changes that prioritize operational stability.
• Contribute to the continuous improvement of the organization's industrial security posture through proactive measures.

• Contribute to the development and enforcement of cybersecurity policies, standards, and procedures specific to industrial operations, ensuring alignment with industry best practices (e.g., ISA/IEC 62443, NIST CSF) and regulatory requirements for industrial environments.
• Provide expert guidance to operations and engineering teams on secure design and implementation principles for digitalization initiatives impacting industrial control systems.
• Stay abreast of the latest industrial cybersecurity trends, technologies, and regulatory changes.

• Provide technical leadership and mentorship to junior engineers and other team members within the Cyber Security department, with a strong focus on industrial security.
• Collaborate closely with IT, operational, and digitalization teams to ensure security is embedded throughout the lifecycle of new projects and systems, particularly at the IT/industrial convergence layer.
• Act as a technical focal point for complex industrial cybersecurity challenges and inquiries.

Minimum Qualifications, Experience and Competencies

Minimum Qualifications: Bachelor’s degree in Computer Science, Information Security, Electrical Engineering, Control Systems Engineering, or a related technical field.

Relevant industry certifications such as GICSP, GRID, CISSP-ISSAP (with industrial control systems focus), or equivalent are highly desirable.

Minimum Experience: 10+ years of progressive experience in cybersecurity engineering, with a strong focus on industrial security architecture, incident response, and vulnerability management within industrial environments.

Proven experience in securing complex enterprise industrial environments, including extensive experience with industrial control systems (ICS), SCADA, and PLC security.

Demonstrated leadership in technical industrial security projects.

Technical Skills:

• Expertise in industrial network security (industrial firewalls, IDPS for industrial systems, network segmentation), endpoint security for industrial assets, and secure remote access for industrial operations.
• Strong understanding of industrial security frameworks (e.g., ISA/IEC 62443, NIST CSF for ICS).
• Proficiency with industrial-specific SIEM platforms, vulnerability management tools, and penetration testing methodologies for industrial systems.
• Experience with scripting languages (e.g., Python, PowerShell) for automation and analysis in industrial contexts.
• Knowledge of industrial operating systems and specialized database security within industrial environments.
• Familiarity with secure software development lifecycle (SSDLC) as applied to industrial applications.
• Deep understanding of industrial protocols (e.g., Modbus, OPC, DNP3, Ethernet/IP).

Company Industry

• Mining
• Fishing

Department / Functional Area

Keywords

• Cyber Security II

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advise against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com