ICS Security Engineer

JOB DESCRIPTION

NOV Africa is seeking a self-motivated ICS Security Engineer to join the Rig Technologies team in Gqeberha. The successful candidate will work directly with technical leaders across the digital products group in the selection, deployment, and validation of cybersecurity controls to reduce exposure and ensure security and compliance requirements are maintained.

The position also entails analyzing our product groups' network designs and software implementations as specified for our customer's requirements. This position will ensure that controls are relevant, properly documented, and maintained for associated products and services.

DUTIES & RESPONSIBILITIES:

1. Collaborate internally and externally with business organizations to create solutions meeting our customer needs while minimizing cybersecurity risks.
2. Guide technical leaders and business functions on OT network architecture, compliance, and security-related matters.
3. Develop, document, and execute cybersecurity plans and schedules.
4. Triage and address security alerts reported by OT security systems.
5. Continuously develop OT vulnerability and remediation capabilities to enable faster patching and mitigation cycles.
6. Evaluate and recommend improvements to enhance the cybersecurity posture of digital products.
7. Analyze network designs and software implementation.
8. Proactively identify risks and active threats to OT systems and applications.
9. Perform incident response activities, including evidence preservation, forensics, and malware/exploit analysis.
10. Participate in the development and implementation of new products to ensure security and compliance requirements are met.
11. Develop and maintain cybersecurity technical documentation and guidelines.
12. Conduct OT security workshops and awareness training as needed.
13. Perform other work-related tasks as assigned.
14. Comply with all NOV Company and HSE policies and procedures.

QUALIFICATIONS:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Security or OT-related certifications are highly desirable, such as CISSP, CISA, CISM, CRISC, or other relevant certifications.

EXPERIENCE:

• At least 2 years of experience working in an OT environment and ICS security.
• Experience with industrial network protocols such as Modbus, PROFINET, OPC, EtherCAT. (Essential)
• Knowledge of design, deployment, and assessment of DCS/SCADA systems. (Desirable)
• Knowledge of ICS security standards like IEC 62443, NIST frameworks, etc. (Desirable)
• Experience with PLCs (Allen Bradley, Siemens, Wago), Embedded Windows, Embedded Linux, and RTOS control systems.
• Experience with Windows Servers, Linux/UNIX, enterprise antivirus, endpoint security, application whitelisting, SIEM, logging, IDS/IPS, authentication methods, TCP/IP, packet capture, and analysis.

ABOUT US

Every day, the oil and gas industry's best minds put more than 150 years of experience to work to help our customers achieve lasting success.

We Power the Industry that Powers the World

Throughout every region and area of drilling and production, our companies provide technical expertise, advanced equipment, and operational support for success—now and in the future.

Global Family

We are a global family of thousands working as one team to create a lasting impact for ourselves, our customers, and our communities.

Purposeful Innovation

Driven by business innovation, product creation, and service delivery, we aim to power the industry that powers the world better.

Service Above All

We strive to anticipate our customers' needs and deliver the finest products and services on time and within budget.