OT Security Engineer

OT Security Engineer

• 6-month initial contract
• Umbrella only
• Bath based - mainly remote with office time to embed into role initially and then once a month from there (or similar )

My client, a leading Utilities provider in the Southwest are actively seeking a Cyber Security Engineer with OT and IT experience, to join their project team. They are currently in the process of implementing LogRhythm as well at Claroty. Therefore, hands on experience working to implement these tools or similar is essential.

The role

• Lead the definition, configuration, and implementation of security controls and services.
• Design, configure and manage an array of Cyber Security tools and technologies including anti-virus products, SIEM, EDR, XDR and CMDBs.
• Develop and deliver secure system profiles and maintain a view of compliance.
• Assist the development of granular Asset Management tooling and processes and employ such mechanisms to maintain granular visibility of the estate.
• Where and when appropriate you may be expected to support the BAU team with Threat Hunting tasks, review Indicators of Compromise that may impact the infrastructure and work to implement methods of blocking/quarantining threats with the Security tools that are in place.
• Assist compliance activity (ISO, GDPR, NIS) and audits when required.
• Working as dedicated Security Engineering Specialist on existing security focused Programme of work focused on securing OT environments.

Knowledge and Experience

Preferred:

• Hands-on experience deploying and configuring a wide array of common security technologies and tools (LogRhythm, Claroty etc.) would be a significant benefit.
• Hold at least one of the following or equivalent Industry qualifications, Microsoft MS-500, Microsoft AZ-500, Microsoft SC-900, VCTA-SEC / VCP-SEC.
• Internationally recognized cyber security standards and OT Regulations (NIST-CSF, ISO27k series, NISD, NIS2 etc.).
• OT cybersecurity standards and frameworks (IEC ISA 99/62443, NIST SP 800-82, etc.).

Essential:

• Experience working on or leading projects to deliver new security solutions.
• Experience securing on premise infrastructure.
• Network security design and technologies.
• Experience securing OT / ICS systems (SCADA, HMI, PLC, etc.).
• Experience and knowledge of identity and access management.
• Knowledge of common cyber security threats and application of countermeasures.
• Good knowledge of Tactics, Techniques and Procedures (TTP) e.g., MITRE Att&ck Framework.
• Superior knowledge of Cloud security principles, techniques and technologies.

For more details, please reach out to Mary Pearson on - .