Beschreibung
Role: OT Network Security ArchitectJob Description
Understand and manage OT network segmentation of the organization. Able to Design and architect OT network segmentation as per industry best practices. Align with the cyber security program to protect the organization’s information assets and critical infrastructure.
Roles & Responsibilities
· Lead & own the networksegmentation architecture across OT network security for large complex OT network.
· Work closely with customer business and technical teams to identify OT Network Security architecture requirements
· Study “As Is” Network Security architecture,understand the existing landscape & connectivity between OT & IT network.
· Review network security policies,standards, network architecture & segmentation, conduct workshops with stakeholders to gather required information.
· Guide junior resources during entire project duration.
· Design & Implement the OT network security architecture per site and have global standard defined for network segmentation.
· Define “To Be” architecture &roadmap, Provide Gap analysis.
· Refer best practices, industry standards like ISA-99/IEC 62443 while recommending “To Be” Architecture
· Create documentation as mentioned in each phases of the project
· Participate in all mandatory meetings,prepare necessary documentation, and work along with Enterprise Architect.
· Manage the internal & external stakeholder
Skills
· 15+ years of Cybersecurity experience with an experience in Industry 4.0, OT network Security
· Hands on experience in network security concepts, security architecture, tools, process and standards/framework.
· Must have experience working on tools like Nozomi Network, Claroty , Forescoutetc
· Previous experience of network architecture design for OT/ICS environment
· Hands on Firewall, IPS/IDS, VPN running, VLANs, NAC solutions.
· Must have experience to design architecture based on Purdue Model.
· Hands on experience to review network security architecture & able to provide expert feedback.
· Should be able to network segmentation for ICS/OT network environment.
· Should be able to understand network security architecture and should be able to provide feedback on network segmentation
· Good understanding of ISO27001, IEC 62443, NIST SP 800,NIST CSF,NIRC CIP.
· Experienced in designing "To Be" architecture.
· Should have a strong understanding of broad cybersecurity risk management and Infrastructure security and a base level understanding OT Security including concepts and their impacts on business operations as well as the associated technologies to help address risk and to enhance clients’ security posture. Should carry one or more of the following technical skills:
· Ability to work with stakeholders ranging from C-level executives to business and technical teams
· Excellent communication, presentation and collaboration skills
· The ability to work easily with diverse and dynamic teams
Details about the project they would be working on: This project is for network segmentation within plant/OT environment. It will be executed in multiple phases/milestones of almost one year project.
Years of exp needed: 6-8yrs
Roles and Responsibilities post joining: ICS/OT security Consultant
Work location : Hamburg, Germany
Contract duration: 50 Weeks
Option of remote work: No. Its primary at customer location
any language mandate: English