Ot Security Expert

Our client is a global leader in synthetic elastomers, supplying customers on all continents with high-quality products.

The OT Security Expert (M/F/d) we are looking for, is mainly responsible to ensure the
operations of the OT environment for Production plants, labs and R&D centers, in terms of best practices as well as ensuring the compliance security aspects at the company. He/she is part of a team that designs and develops the company’s OT and ICS strategies and security architecture.

Be part of the team that reviews and implements the security policies and best practices, as well as develops baselines and work instructions aligned with the Information Security governance.

Tasks

**Responsibilities**:

- You will be responsible for the management and secure operation of the systems, services and processes within the OT area that enables the business to ensure the

uninterrupted operation of all critical production services.
- Critical Infrastructure Protection (CIP) and compliance with our internal standards.
- Ensure management, deployment and maintenance of main OT Applications and OT security services such are Anti-Virus, Vulnerability Management, OSI PI, Aspen, Bentley, LIMS solutions etc. on regional and global level

Tasks
- Manages and coordinates local/regional device & assets inventory regularly for critical Operational Technology (OT) considering Critical Infrastructure Protection (CIP) requirements.
- Help in improving and operationalizing the OT/ICS incident response capabilities within the company
- Advise the management with suitable OT Security solutions and technologies that can be deployed, and implement the necessary change management process to keep up to date with ever-evolving cybersecurity threats.
- Supporting the risk management and mitigation planning to ensure business continuity
- Contribute to the competency development in the OT/ICS Security aspect of the company
- Execution of Security System Upgrades, and Application Updates
- Review external patch sources for all disciplines and inform firmware controllers
- Perform firmware verification testing as requested by firmware controllers
- Coordinate, track and review compliance to the Patch Management process (assessment and mitigation plans) including consolidating vulnerability information to cover our OT framework
- Work closely with Projects and Asset Management to monitor and report on CIP KPIs which incorporate the monthly scorecards
- Assist with patch and vulnerability assessments
- Author CIP related baselines for final approval and implementation by our Principal plant PCS/PCT/Security Engineers

identified and adhered to
- Support and document requirements associated with CIP event recoveries (responsible substation OT devices and quality assurance for other disciplines)
- Review and report on scans performed on substation OT devices to management
- Coordinate the performance of periodicals including annual vulnerability assessments and resulting remediation (monthly reconciliation required)
- Coordinate the performance of periodicals including annual vulnerability assessments and resulting remediation (monthly reconciliation required)
- Assign remediation tasks and track for timely compliance
- Manages and coordinates local/regional device & assets inventory regularly for critical Operational Technology (OT) considering Critical Infrastructure Protection

(CIP) requirements. regional and global level

**Requirements**:

- Bachelor’s degree in IT or related fields or equivalent
- Professional education/certification in the IT domains (Network, Virtualisation, Storage, Security) used to run OT assets
- Must have a thorough knowledge and experience with ICS systems and ICS security industry best practices with exposure to Operational Technologies (PCS, PCT)
- Must have practical experience in, working in close cooperation with production

functions, for securing hosting environments of OT, ICS, PCS and PCT (Windows,
Domains, network and production firewalls including the interaction between
Linux and Unix are a plus
- Operational experience in the ICS/PCS/PCT Protection & Controls. SCADA discipline would be an asset
- At least 10 years of experience with proven knowledge in an IT and OT environment, managing enterprise IT and OT infrastructure
- Ability to write baselines and controls implementation documents as well as review design documents provided by stakeholders
- Comprehensive working knowledge of one or more of the following: IEC 62443/ISA 99, ISO 27001, NIST SP 800-82, CPNI Good Practice.
- Proven knowledge of TCP/IP and other network protocols.
- Familiarity with fundamental network DNS, DHCP, etc.
- Familiarity with ICS-related communications protocols (e.g., Ethernet, MODBUS, DNP3, S7, etc.)
- Cybersecurity experience, particularly in securing critical OT infrastructure / ICS - PCS, SCADA systems, PLCs, RTUs, etc.
- Proficiency in English needed, French or German would be a plus
- The German work p