Gulf Cluster Cyber Security Engineer

Job Description

SummaryLead Engineer 2 ? OT/Product Cyber Security with DCS knowledgeRoles & Responsibilities:As part of Technical Tendering:

• Review any RFQ?s that touch on Cyber Security or could potentially have an impact on Cyber Security. List recommendations on how to proceed and list any clarifications or exceptions we might take to the bid concerning Cyber Security, using GE and GE Renewable energy Policies, coordinating with relevant teams (Grid Solutions, Renewable Energy, Legal).
• Proposing appropriate cyber security solutions to customer referring to customer specification and GE capabilities/products ensuring core system (DS Agile, GPG, CCS, CIC etc) compatibility.
• Creating an architecture reference that could be used for Inquiry to Order (ITO) proposals that require Cyber Security.
• Creating the Security Assurance Plan (SAP) for all projects which require it, be able to discuss it with relevant teams in GE and with the Customer.
• Creating a BOM template for Cyber security devices using a standardized format across GA.
• Creating a template that could be used for estimating costs associated with implementing cyber security (including parts, labor and testing of cyber architecture).
• Developing DOR for cybersecurity project execution by internal and external stake holders.

As part of Execution:

• Creating the Functional Design Spec (FDS) and all documents for the cyber security system which would also define the architecture being implemented. In conjunction work with other internal and external entities to ensure the overall Cyber security design is cohesive.
• Conduct the FAT and SAT relating to Cyber Security. Detail on how the security of the system will be tested. Possibly help come up with a list of subcontractors that could be used.
• Configuring the Cyber security devices (Switches, hubs, servers, Jump box, firewalls, IDS etc.).
• Develop cyber security assurance and maintenance plan for all installed base and its execution.
• Align with core system team to implement and test cybersecurity during internal validation for system/solutions.

Globally:

• Share best practices and lessons learned and continuously update the technical cyber security architecture, based on changing technologies, in collaboration with other engineering security leads, domain architects and experts.
• Training GE resources and develop cyber security team to address customer demands.
• Pre-qualify GE as preferred cyber security solution supplier/vendor for end customers
• Cyber Security CAPEX deployment in the Gulf cluster.

Required Qualifications:

• Bachelor?s Degree in Electrical, Electronics or Communications Engineering or Information Technology from an accredited university
• Minimum 5 years of experience in project security, with security design and architecture, best practices in network topology for IT and OT
• Awareness of latest technical developments in the cyber security community
• Solid experience of industrial environments (DCS / SCADA, automation, regulation, process, etc.) and communication protocols (e.g. IEC 61850, Modbus, IEC 101, DNP3.0, IEC103, IEC104) and Cyber Security standards (e.g. IEC 62443 - ISO 27001 - ISO27005 - IEC 22301).
• Demonstrated experience with Linux, VxWorks and Windows server operating systems including user account management, security / system hardening, device control, and patch management.
• Demonstrated experience with Telecom and Network Equipment (Routers, Switches, next gen Firewalls, etc)
• Demonstrated experience with DMZ Installation, configuration and execution.
• Fluent English speaking and writing
• Ability to work effectively in a team and across functions, partnering with other teams in a worldwide environment
• Strong customer service mindset
• Ability and willingness to travel domestically and internationally in region as required (Min. 50%)

Desired Qualifications:

• Demonstrated experience with virtualization of systems (Vmware, Virtualbox etc)
• Experience with security technologies, such as:
  • Symmetric and asymmetric cryptography
  • LDAP, RADIUS, GPO, SSH, SFTP, HTTPS, SYSLOG
  • Encryption, TLS, RSA and code signing
• Knowledge of cyber security standards and regulations affecting the utilities industry, such as IEC 62443, NERC CIP, IEEE 1686, IEC 62351
• Cyber security certification (ex. ISA, ISC2, SANS, ISACA, CISSP) is a plus
• Demonstrated experience with Intrusion detection system and protection equipment and software
• Experience with programing and scripting languages
• GE leadership behaviors: deliver with focus, lead with transparency and act with humility
• Pro-activeness, sense of urgency, resistance to pressure, autonomy; ability to interact with multiple functions and teams worldwide
• Strong oral and written communication skills

Additional InformationRelocation Assistance Provided: No

Keyskills :