ICS/OT Cybersecurity Specialist - VR/30764

Join a multi-energy company that is committed to a sustainable world with a forward-looking vision based on innovation, efficiency, respect, and value creation to drive progress in society. This renowned company is looking for an ICS/OT Cybersecurity Specialist, located in the city centre of Aberdeen, requiring daily attendance at the office.

Overview job description

The ICS/OT Cybersecurity Specialist is responsible for managing ICS/OT cybersecurity comprehensively, ensuring compliance with cybersecurity standards and legislation through structured risk assessments and targeted modifications. This role includes maintaining all risk assessments and procedures related to cybersecurity for operational technology (OT), staying updated on threats and policy developments, and implementing and continuously improving security controls. The specialist will identify vulnerabilities, implement security measures, and respond to incidents to ensure the uninterrupted operation of critical infrastructure. Additionally, this position will be responsible for cybersecurity projects and will implement and continuously improve security controls to ensure compliance with global and UK standards.

Main duties and responsibilities

• Monitoring and analysing network traffic and system logs to detect and respond to security incidents.
• Responding to and investigating cybersecurity breaches and incidents.
• Managing ICS/OT Cybersecurity, ensuring compliance with relevant standards IEC62443, NIS(R) 2018, and OG86 and UK legislation.
• Participating in the design and implementation of secure ICS/OT architectures.
• Actively collaborating in the management of IT cybersecurity and supporting the LISO (Local Information Security Officer) in its oversight responsibilities.
• Developing and implementing security policies, procedures, and controls to mitigate identified risks.
• Implementing and continuously improving security controls to protect critical infrastructure.
• Conducting regular risk assessments and vulnerability analyses to identify potential threats.
• Conducting regular security audits and assessments to ensure ongoing protection of ICS/OT systems.
• Maintaining and updating all risk assessments and procedures related to OT cybersecurity.
• Staying current with emerging threats, vulnerabilities, and policy developments relevant to ICS/OT.
• Acting as the project lead for OT cybersecurity projects, driving continuous improvement in security posture.
• Collaborating with internal and external stakeholders to ensure effective cybersecurity measures.
• Providing guidance, training, and awareness programs for staff on ICS/OT cybersecurity best practices.

Applicants to this role require

• Minimum of 5 years of experience in ICS/OT cybersecurity.
• Strong knowledge of ICS OT cybersecurity standards and regulations.
• Deep technical understanding of regulations, codes, standards, guidelines, and good practice for the UKCS oil and gas industry, particularly related to ICS/OT compliance.
• Significant engineering and technical experience gained in an oil and gas engineering and project delivery environment, ideally with both operator and contractor experience.
• Experience with risk assessments and security controls implementation.
• Excellent communication and project management skills.
• Robust understanding of Operational Technology and control systems.
• Sound appreciation of industry technology trends, developments, and challenges.
• Ability to foster effective relationships with contractors.
• Strong ownership of cost and schedule performance.
• Awareness and competence in Quality Assurance and Quality Control preferred.
• Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Preferred, or willing to undertake company-sponsored training in the following: Professional certifications such as CISSP, CISM, or GICSP.
• The role may require travelling offshore for certain business requirements.

#J-18808-Ljbffr