Consultant - OT Cybersecurity

Posted:
10/23/2024, 5:00:00 PM

Location(s):
Pune, Maharashtra, India ⋅ Karnataka, India ⋅ New Delhi, Delhi, India ⋅ Hyderabad, Telangana, India ⋅ Maharashtra, India ⋅ Telangana, India ⋅ Delhi, India ⋅ Gujarat, India

Experience Level(s):
Junior ⋅ Mid Level ⋅ Senior

Field(s):
Consulting ⋅ IT & Security

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

Basic Skills:

Observation - able to detect things that just don't align with best practices and standard.

Information analysis - being able to process the information received and understand it.

Information synthesis - being able to take notes and summarise the relevant information while on interviews and on site.

Network topologies - draw network topologies based on descriptions or based on observed things.

This position will report to Execution Manager.

OT:

1) Understand OT environment (common OT areas, personnel involved, OT constraints).

2) Able to "explore" the customer main systems under consideration.

3) Able to identify OT components: SCADA, PLC, HMI, RTU.

4) Understand basic OT flows: client-server, user operativity, user permissions.

5) Basic knowledge about different OT vendors (Siemens, ABB, Schneider, and Mitsubishi).

Networking & System:

1) Understand a network diagram - able to identify the different assets and understand, on a high level, how are they connected.

2) Identify network equipment - being able to identify a switch, wireless Access Points, routers, net diodes, and firewalls.

3) Know the network basics - switches, wireless Access Points, routers, net diodes, and firewalls.

4) Understand routing and segmentation concepts like VLANs.

5) Identify and trace physically connected assets and documenting them in a network topology.

6) Extract switches configuration.

7) Able to capture traffic from mirrors.

8) Understand general system configurations like O.S group policy, VMs, update mechanism.

Cybersecurity:

1) Able to identify potential vulnerabilities and threats.

2) Able to identify current installed countermeasures/controls including, monitoring, endpoints security solutions, hardening measures (antivirus/EDR, GPO).

Physical security and safety:

1) Identify security measurements (cameras, locks, guards, and alarms).

2) Identify the access controls methods.

3) Identify fire extinguishing mechanisms.

Good to have:

1) Any cybersecurity certification, including OT Security certifications IEC-62443, GICSP, CSSK.

2) Knowledge or experience with Standards: NIST 800-82, NERC-CIP, IEC 62443.

3) Networking hands-on experience including being able to config port mirrors.

Travel Requirements:

Flexibility for travel 20-30% is required and can include both domestic and international trips.

Education / Certifications:

1) Electrical/Mechanical/ Telecommunications Engineering, Computer Science or SysAdmin and Networking or Process engineer or another similar relevant degree.

2) Security certifications such as IEC 62443, CISSP, GISP, CSSK, and CISM.

3). Cybersecurity Master’s Degree (advantage).

Technical Qualifications and Experience:

1) Technical knowledge of networking, routing and switching.

2). Technical knowledge of firewalls, IDS and similar.

3) Technical knowledge of OT technologies, networking, and protocols.

4) Experienced in a combination of risk management, information security, and IT jobs.

5) Experienced in implementing cybersecurity products in manufacturing environments (advantage).

6) Experienced in creating ICS security monitoring and remediation policies using industry-standard reference architecture mapping such as the IEC62443 (advantage).

7) 4+ years of experience with AV, EDR, NAC or similar (advantage).

8) Experienced with managing, analyzing, and understanding log sources for threat hunting will be an added advantage.

9) Knowledge of common system exploits, network attacks, phishing techniques, and malware will be an added advantage.

Other Skills:

1) Able to quickly comprehend the responsibilities and capabilities of new technologies.

2) Be able to work in a global environment, with virtual teams and customer sites.

3) Effectively communicate in English at different levels in the organisation.

4) Fluency in written and spoken English.

6) Be a team player.

Benefits:

  • The ability to collaborate with, learn from colleagues in a complex, global organisation.
  • We provide a working environment with a creative company, paired with a great compensation package, great benefits, and a supportive atmosphere where you can sharpen with new challenges and development opportunities.
  • Corporate Social Responsibility opportunities.
  • Support from our 24/7 employee assistance program.
  • We are committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-Onsite

#LI-RS1