ICSR Lead Engineer

Position: ICSR Lead Engineer

Location: Houston, TX (Onsite)

Experience: 8-15 years

Salary :: $130-$150K Full Time

Responsibilities:

• Responsibilities Involve & support all phases in the ICS Cybersecurity (Work Practices) including implementation, deployment and stewardship
• Operations & Maintenance - Support regular operations & maintenance stewardship and reporting activities for ICSR systems (i.e., review local operating procedures of BU against the ICSR WPs to ensure alignment, perform access reviews and periodic verification for ICSE, listing and reporting of cyber KPIs etc.)
• Support and involve in application of discipline design standards, specifications, codes, and appropriate safety/ security criteria.
• Support and involve in meeting industry standards (IEC 62443, NIST Cybersecurity Framework etc.) and regulatory requirements pertaining to ICS Cybersecurity.
• Support and involve in implementing cyber secure architecture of controls and safety systems.
• Support in management and assessment of cybersecurity controls and provide relevant improvement recommendations.
• Support in assessment of threats to Control Systems (i.e. take inventory of required templates/documents to determine the key components/ equipment for risk assessments, stewarding/ participating in risk assessments, appropriate assignment of risk ratings, identification of Controls for the risk scenario or threat vector, obtain endorsement / approvals from Custodian and/or Business Owner, Perform periodic verifications to ensure that approved risk-reduction controls are in place and functioning for each ICSE zone) and management of security controls and processes.
• Third Party Services - Support the stewardship of controls for third party services (i.e., Document processes or procedures for Third Party Access, maintain/verify controls pertaining to Third Party access and External Connections, collaborate with ENC task force team, perform risk assessments for systems with ICSE External Connections, complete controls catalogs to meet ICSR requirements for external connections and ensure certification, Perform periodic verifications to ensure that approved risk-reduction controls are in place and functioning for each ENC)
• Assessment and Improvement - Support Continuous Improvement activities for ICSR (i.e., Work with ICSR CoE and BU controllers in assisting ICSR UIA and external audits, Review and endorsement of BU's deviations from ICSR v4 requirements, Help BU to close audit gaps and in sustaining closure actions.)

Summary:

• Any Control System knowledge ( DCS & PLCs like ABB, Honeywell, Emerson, Yokogawa etc )
• Firewall review
• Access control system
• Risk assessment
• Developing the operating procedures
• Audit Support
• Cyber Security

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Position: ICSR Lead Engineer

Location: Houston, TX (Onsite)

Experience: 8-15 years

Salary :: $130-$150K Full Time

Responsibilities:

• Responsibilities Involve & support all phases in the ICS Cybersecurity (Work Practices) including implementation, deployment and stewardship
• Operations & Maintenance - Support regular operations & maintenance stewardship and reporting activities for ICSR systems (i.e., review local operating procedures of BU against the ICSR WPs to ensure alignment, perform access reviews and periodic verification for ICSE, listing and reporting of cyber KPIs etc.)
• Support and involve in application of discipline design standards, specifications, codes, and appropriate safety/ security criteria.
• Support and involve in meeting industry standards (IEC 62443, NIST Cybersecurity Framework etc.) and regulatory requirements pertaining to ICS Cybersecurity.
• Support and involve in implementing cyber secure architecture of controls and safety systems.
• Support in management and assessment of cybersecurity controls and provide relevant improvement recommendations.
• Support in assessment of threats to Control Systems (i.e. take inventory of required templates/documents to determine the key components/ equipment for risk assessments, stewarding/ participating in risk assessments, appropriate assignment of risk ratings, identification of Controls for the risk scenario or threat vector, obtain endorsement / approvals from Custodian and/or Business Owner, Perform periodic verifications to ensure that approved risk-reduction controls are in place and functioning for each ICSE zone) and management of security controls and processes.
• Third Party Services - Support the stewardship of controls for third party services (i.e., Document processes or procedures for Third Party Access, maintain/verify controls pertaining to Third Party access and External Connections, collaborate with ENC task force team, perform risk assessments for systems with ICSE External Connections, complete controls catalogs to meet ICSR requirements for external connections and ensure certification, Perform periodic verifications to ensure that approved risk-reduction controls are in place and functioning for each ENC)
• Assessment and Improvement - Support Continuous Improvement activities for ICSR (i.e., Work with ICSR CoE and BU controllers in assisting ICSR UIA and external audits, Review and endorsement of BU's deviations from ICSR v4 requirements, Help BU to close audit gaps and in sustaining closure actions.)

Summary:

• Any Control System knowledge ( DCS & PLCs like ABB, Honeywell, Emerson, Yokogawa etc )
• Firewall review
• Access control system
• Risk assessment
• Developing the operating procedures
• Audit Support
• Cyber Security

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.