SABAP Cluster Cyber Security Senior Engineer

Job Description

SummarySABAP Cluster Cyber Security Senior Engineer is responsible for cyber security design, configuration, implementation, assurance and training in the cluster. The successful candidate will liaise with tendering team (ITO) to recommend, clarify and propose appropriate cyber security solution based on customer specification and RFQs and liaise with execution team (OTR) in preparing, reviewing documents/drawings, configuration and conducting cyber security FAT and SAT. This role covers all GA business product lines including PAC, CIC, Services and M&D.Roles and Responsibilities:

• Review any RFQs that touch on Cyber Security or could potentially have an impact on Cyber Security. List recommendations on how to proceed and list any clarifications or exceptions we might take to the bid concerning Cyber Security, using GE and GE Renewable energy Policies, coordinating with relevant teams (Grid Solutions, Renewable Energy, Legal).
• Proposing appropriate cyber security solutions to customer referring to customer specification and GE capabilities/products ensuring core system (DS Agile, GPG, CCS, CIC etc) compatibility.
• Creating an architecture reference that could be used for Inquiry to Order (ITO) proposals that require Cyber Security.
• Creating the Security Assurance Plan (SAP) for all projects which require it, be able to discuss it with relevant teams in GE and with the Customer.
• Creating a BOM template for Cyber security devices using a standardized format across GA.
• Creating a template that could be used for estimating costs associated with implementing cyber security (including parts, labor and testing of cyber architecture).
• Developing DOR for cybersecurity project execution by internal and external stake holders.

• Creating the Functional Design Spec (FDS) and all documents for the cyber security system which would also define the architecture being implemented. In conjunction work with other internal and external entities to ensure the overall Cyber security design is cohesive.
• Conduct the FAT and SAT relating to Cyber Security. Detail on how the security of the system will be tested. Possibly help come up with a list of subcontractors that could be used.
• Configuring the Cyber security devices (Switches, hubs, servers, Jump box, firewalls, IDS etc.).
• Develop cyber security assurance and maintenance plan for all installed base and its execution.
• Align with core system team to implement and test cybersecurity during internal validation for system/solutions.

• Share best practices and lessons learned and continuously update the technical cyber security architecture, based on changing technologies, in collaboration with other engineering security leads, domain architects and experts.
• Training GE resources and develop cyber security team to address customer demands.
• Pre-qualify GE as preferred cyber security solution supplier/vendor for end customers
• Cyber Security CAPEX deployment in the SABAP cluster.

Required qualifications:

• Bachelors Degree in Engineering, Computer Science or Information Technology
• Minimum 5 years of experience in project security, with security design and architecture, best practices in network topology for IT and OT
• Awareness of latest technical developments in the cyber security community
• Demonstrated experience with Linux, VxWorks and Windows server operating systems including user account management, security / system hardening, device control, and patch management.
• Demonstrated experience with Telecom and Network Equipment (Routers, Switches, next gen Firewalls, etc)
• Demonstrated experience with DMZ Installation, configuration and execution
• Fluent in English speaking and writing
• Ability and willingness to travel domestically and internationally in region as required (Min. 50%)

Desired Characteristics:

• Demonstrated experience with virtualization of systems (Vmware, Virtualbox etc)
• Experience with security technologies, such as:
• Symmetric and asymmetric cryptography
• LDAP, RADIUS, GPO, SSH, SFTP, HTTPS, SYSLOG
• Encryption, TLS, RSA and code signing
• Knowledge of cyber security standards and regulations affecting the utilities industry, such as IEC 62443, NERC CIP, IEEE 1686, IEC 62351
• Cyber security certification (ex. ISA, ISC2, SANS, ISACA, CISSP) is a plus

• leadership behaviors: deliver with focus, lead with transparency and act with humility
• Pro-activeness, sense of urgency, resistance to pressure, autonomy ability to interact with multiple functions and teams worldwide
• Growth mindset
• Fluent English speaking and writing mandatory
• Strong oral and written communication skills

Keyskills :
SshEncryptionCcsLinuxIdsVirtualizationPatch ManagementAgileSftpVMwareSAPVirtualboxSyslogServersFirewallsHubsInformation TechnologySecurityCyber Security Architectureproject securitycyber security assurancecicArchitectureCyber Securi

About Company

GE Power is a world energy leader that provides technology, solutions and services across the entire energy value chain from the point of generation to consumption. Powering more than a third of the world, it serves customers in more than 150 countries.