Principal Consultant (Ot)

Join Australia's largest independent cyber security organisation and work with industry leaders.

07th June, 2024

CyberCX has united Australia and New Zealand's most trusted cyber security companies to deliver the most comprehensive end-to-end cyber security services offering to enterprises and governments. With a workforce of over 1400 cyber security professionals and a footprint of over 14 offices across Australia and New Zealand and global presence in the UK and the US, CyberCX offers a full suite of cyber security services.
We are seeking an experienced Operational Technology Principal Consultant to join the CyberCX OT Cyber Solutions Practice. Reporting to the Executive Director for OT Cyber Solutions, you will be responsible for scoping and leading the delivery of cyber security projects in the control systems networks of key clients of CyberCX.
About the role
The role will work with the core practices of CyberCX for delivery of cyber security projects across industrial network segments such as Telecommunications Systems, IT/OT Interface environments, Safety Instrumented Systems, SCADA environments and control system networks.
The role will be the focal point of cyber security engagements in OT environments providing SME advice, technical quality assurance and leadership to the cyber security professionals in CyberCX.

Key Responsibilities

• Conduct all activities in a safe and efficient manner in accordance with our clients safety policies and procedures
• Lead, Mentor and assist the development of other security engineers and specialists regarding Operational Technology systems and components
• Investigating client industrial control system environments to provide an assessment of cyber capabilities against known technical standards
• Develop architecture artefacts, high and low level designs and guide implementation of OT cyber security controls
• Advising changes on the ICS network to strengthen current cybersecurity controls and introduce new controls
• Documentation of existing and target state security architectures and patterns, including consulting on how a client can achieve target state architectures
• Ensure that appropriate security controls are designed and implemented according to client needs
• Provide specialist advice to clients to effectively manage cyber security risks to their Operational Technology systems
• Provide advisory services for clients in the energy, mining, utilities, manufacturing, transport and technology industries.

07th June, 2024

CyberCX has united Australia and New Zealand's most trusted cyber security companies to deliver the most comprehensive end-to-end cyber security services offering to enterprises and governments. With a workforce of over 1400 cyber security professionals and a footprint of over 14 offices across Australia and New Zealand and global presence in the UK and the US, CyberCX offers a full suite of cyber security services.
We are seeking an experienced Operational Technology Principal Consultant to join the CyberCX OT Cyber Solutions Practice. Reporting to the Executive Director for OT Cyber Solutions, you will be responsible for scoping and leading the delivery of cyber security projects in the control systems networks of key clients of CyberCX.
About the role
The role will work with the core practices of CyberCX for delivery of cyber security projects across industrial network segments such as Telecommunications Systems, IT/OT Interface environments, Safety Instrumented Systems, SCADA environments and control system networks.
The role will be the focal point of cyber security engagements in OT environments providing SME advice, technical quality assurance and leadership to the cyber security professionals in CyberCX.

Key Responsibilities

• Conduct all activities in a safe and efficient manner in accordance with our clients safety policies and procedures
• Lead, Mentor and assist the development of other security engineers and specialists regarding Operational Technology systems and components
• Investigating client industrial control system environments to provide an assessment of cyber capabilities against known technical standards
• Develop architecture artefacts, high and low level designs and guide implementation of OT cyber security controls
• Advising changes on the ICS network to strengthen current cybersecurity controls and introduce new controls
• Documentation of existing and target state security architectures and patterns, including consulting on how a client can achieve target state architectures
• Ensure that appropriate security controls are designed and implemented according to client needs
• Provide specialist advice to clients to effectively manage cyber security risks to their Operational Technology systems
• Provide advisory services for clients in the energy, mining, utilities, manufacturing, transport and technology industries.

Skills &
Experience

• Experience in an OT/IT information security architecture role, especially implementing security controls and strategy in IT/OT convergence
• 2+ years' experience in Cyber Security with a strong background in Operational Technology (e.G. Industrial Control Systems (ICS), Process Control Systems (PCS) or other Real Time Control Systems) environments
• Knowledge of different ICS Architectures, such as, Distributed Control Systems (DCS) and Supervisory Control and Data Acquisition (SCADA) and emerging Internet of Things (IoT) architectures
• Knowledge of components of Industrial Control Systems, such as - Data Historian, HMI, Engineering Work Station, PLC and Automation Controllers
• Knowledge of Industrial Network Protocols (such as OPC, Modbus, DNP3, IEC 61850)
• Strong knowledge industrial security frameworks including IEC 62443
• Strong working knowledge of Process Safety risk management frameworks (such as Process Hazard Analysis (PHA are desirable
• Experience in any one of the following sectors is desirable:
  Oil &
  Gas, Mining, utilities (Water, Energy and Gas) or the manufacturing industry is mandatory, experience across multiple sectors is desirable
• Strong knowledge and experience of network security controls is desirable
• Industrial and/or Cyber Security certifications such as SANS GICSP, SANS GRID, IACRB CSSA, (ISC)2 CISSP or ISACA CISM would be desirable
• Network qualifications equivalent to CCNP or greater
• Experience scoping and designing cyber security solutions from industrial security vendors such as Nozomi, Claroty, Dragos.
• Experience scoping and designing security solutions from vendors such as Palo Alto Networks, Fortinet, Cisco, HIrschmann

Benefits

• Flexible hybrid working environment (a blend of office and WFH)
• Corporate discounts on a huge variety of retail stores through our partners
• Ability to deepen your experience and skills in-line with CyberCX's specialisation as Australia's leading cyber security provider.
• Opportunities to work with a diversity of clients experiencing the opportunities associated with the digital transformation of their enterprise or industry and distinguish yourself as a professional who can navigate these areas.

Please note, due to the nature of this role, it is a mandatory requirement that all applicants are Australian citizens or hold permanent residency.Apply For Job