Industrial Cybersecurity Expert (ICSE)
Siemens
Job description:Provide proactive support and consultation for project execution by implementing and executing cybersecurity practices and controls that ensure a holistic cybersecurity approach, in accordance with internal standards, customer requirements and applicable laws.
Responsibilities:▪Support and consultation in evaluation of cybersecurity requirements (by customer / law), feasibility evaluation, development of security objectives and protection goals, PSS classification and tailoring security activities for the project as required in BID/Tender-, Execution- and Warranty-Phase.▪Support and consult during execution phase in development and implementation of a holistic, project specific security design/program in alignment with internal/external stakeholders, portfolio managers, and customer. Perform TRA and derive the required measures. Support during cybersecurity testing FAT/SAT. Create cybersecurity documentation in the respective area of responsibility.▪Creation of blueprints and test instructions for components in the area of responsibility based on regulatory requirements and gives guidance to the respective engineering and commissioning team.▪Support the project with knowledge of the typical codes / standard / acts (laws) (like IEC 62443, ISO 27K, (US NERC-CIP, NIST…) and component knowledge.▪Holds the authority to issue instructions within a project regarding all aspects of cybersecurity within the respective area of responsibility and in alignment with the relevant stakeholders e.g. ICSOs / Portfolio Management.
Required Skills and Experience▪Bachelor/master’s degree or equivalent with proven work experience in computer science, cybersecurity, electronics, cybernetics, or a similar field.▪7 years of experience with at least one year in a specialized role related to Cyber Security.▪Analyze and comply with cybersecurity-related laws, regulations and legislations. Implement cybersecurity recommendations and best practices, Incident and Vulnerability Handling, Holistic security concepts, IT and OT cybersecurity technologies, architectures and concepts, Products, Solutions and Services (PSS) risk-based approach.▪Siemens Energy Cybersecurity governance and frameworks (SFeRa, PSS Guide). Detailed understanding of SE Cybersecurity activities in large EPC project execution including expertise in PSS Classification, Security Requirements Management, Holistic Security Concept, Secure Architecture & Design, Secure Configuration & Hardening, Security Testing, Threat and Risk Analysis, Secure Supplier Selection, Security Incident & Vulnerability Management.▪Detailed knowledge of IEC 62443 and NIST (CSF, SP800), knowledge of ISO27001, Knowledge in cybersecurity regulations: EU CRA, EU NIS/NIS2, NERC_CIP.▪Knowledge of ISO/IEC 42K family implementation will be an added advantage.▪Ability to prioritize complex tasks within project execution and develop adequate implementation plans. Motivated and ability to self-organize.▪Experience in international project business and openness to other cultures.▪Interpersonal Skills: how you manage yourself and relationships with others.▪Thinking & Creativity: your style of taking in and processing information, creating alternatives and seeking out new ways.▪Professional Cybersecurity certifications would be an added advantage.▪Strong project experience in the implementation of cybersecurity at large across various project execution functions and disciplines.▪Drive: how you pursue goals and handle setbacks.▪Digital Skills: Digitalization in our daily work and the innovative portfolio we offer to our customers.▪Technical Skills: new technologies e.g., from our Technology Fields and Fields of Actions▪Functional Skills: critical to create value, to execute and deliver on our strategy in our value chain areas.▪Excellent communication skills: interpersonal, written, visual (presentations), and verbal.
Your opportunities for personal growth Your recognition will be global since you will be working on projects which have a global impact alongside BU. You will be provided an atmosphere to learn & develop your skills in various dimensions & technologies.
Let’s Talk About Us "Let’s make tomorrow different today" is our genuine commitment at Siemens Energy to all customers and employees on the way to a sustainable future. We are a newly formed Digitalization Projects group (DPO) under Siemens Energy (SE) India, a part of a 100,000 global strong Siemens Energy team. SE is a Company that operates in several countries and has seventy thousand plus employees along with highly valued consumers and highly devoted vendors. DPO is an in-house department to support, develops, and executes Digitalization projects across businesses.
MORE INSIGHTS Be Energized. Be you. Lucky for us, we are not all the same. Through diversity, we generate power. We run on inclusion and compassion. Our combined creative energy is fueled by at least 130 nationalities. Siemens Energy celebrates character, regardless of ethnic background, gender, age, religion, identity, or disability. We energize society. All of society.
Responsibilities:▪Support and consultation in evaluation of cybersecurity requirements (by customer / law), feasibility evaluation, development of security objectives and protection goals, PSS classification and tailoring security activities for the project as required in BID/Tender-, Execution- and Warranty-Phase.▪Support and consult during execution phase in development and implementation of a holistic, project specific security design/program in alignment with internal/external stakeholders, portfolio managers, and customer. Perform TRA and derive the required measures. Support during cybersecurity testing FAT/SAT. Create cybersecurity documentation in the respective area of responsibility.▪Creation of blueprints and test instructions for components in the area of responsibility based on regulatory requirements and gives guidance to the respective engineering and commissioning team.▪Support the project with knowledge of the typical codes / standard / acts (laws) (like IEC 62443, ISO 27K, (US NERC-CIP, NIST…) and component knowledge.▪Holds the authority to issue instructions within a project regarding all aspects of cybersecurity within the respective area of responsibility and in alignment with the relevant stakeholders e.g. ICSOs / Portfolio Management.
Required Skills and Experience▪Bachelor/master’s degree or equivalent with proven work experience in computer science, cybersecurity, electronics, cybernetics, or a similar field.▪7 years of experience with at least one year in a specialized role related to Cyber Security.▪Analyze and comply with cybersecurity-related laws, regulations and legislations. Implement cybersecurity recommendations and best practices, Incident and Vulnerability Handling, Holistic security concepts, IT and OT cybersecurity technologies, architectures and concepts, Products, Solutions and Services (PSS) risk-based approach.▪Siemens Energy Cybersecurity governance and frameworks (SFeRa, PSS Guide). Detailed understanding of SE Cybersecurity activities in large EPC project execution including expertise in PSS Classification, Security Requirements Management, Holistic Security Concept, Secure Architecture & Design, Secure Configuration & Hardening, Security Testing, Threat and Risk Analysis, Secure Supplier Selection, Security Incident & Vulnerability Management.▪Detailed knowledge of IEC 62443 and NIST (CSF, SP800), knowledge of ISO27001, Knowledge in cybersecurity regulations: EU CRA, EU NIS/NIS2, NERC_CIP.▪Knowledge of ISO/IEC 42K family implementation will be an added advantage.▪Ability to prioritize complex tasks within project execution and develop adequate implementation plans. Motivated and ability to self-organize.▪Experience in international project business and openness to other cultures.▪Interpersonal Skills: how you manage yourself and relationships with others.▪Thinking & Creativity: your style of taking in and processing information, creating alternatives and seeking out new ways.▪Professional Cybersecurity certifications would be an added advantage.▪Strong project experience in the implementation of cybersecurity at large across various project execution functions and disciplines.▪Drive: how you pursue goals and handle setbacks.▪Digital Skills: Digitalization in our daily work and the innovative portfolio we offer to our customers.▪Technical Skills: new technologies e.g., from our Technology Fields and Fields of Actions▪Functional Skills: critical to create value, to execute and deliver on our strategy in our value chain areas.▪Excellent communication skills: interpersonal, written, visual (presentations), and verbal.
Your opportunities for personal growth Your recognition will be global since you will be working on projects which have a global impact alongside BU. You will be provided an atmosphere to learn & develop your skills in various dimensions & technologies.
Let’s Talk About Us "Let’s make tomorrow different today" is our genuine commitment at Siemens Energy to all customers and employees on the way to a sustainable future. We are a newly formed Digitalization Projects group (DPO) under Siemens Energy (SE) India, a part of a 100,000 global strong Siemens Energy team. SE is a Company that operates in several countries and has seventy thousand plus employees along with highly valued consumers and highly devoted vendors. DPO is an in-house department to support, develops, and executes Digitalization projects across businesses.
MORE INSIGHTS Be Energized. Be you. Lucky for us, we are not all the same. Through diversity, we generate power. We run on inclusion and compassion. Our combined creative energy is fueled by at least 130 nationalities. Siemens Energy celebrates character, regardless of ethnic background, gender, age, religion, identity, or disability. We energize society. All of society.
Confirmar seu email: Enviar Email