Our Federal Government Client is looking for one (1) Security Engineer and one (1) Control System Cyber Security Specialist.The ICT Security Engineer will be responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.The person will possess broad knowledge in the following:
- Security system design tools, methods and techniques
- Installation, integration and optimisation of system components
- Cyber security and privacy principles and organisational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Countermeasure design for identified security risks.
- Cyber threats and vulnerabilities.
- Demonstrated knowledge of Cyber Security technical controls (CIS, ASD), frameworks (NIST-CSF, ISO27000, ISM) and best practice (Microsoft security practices).
- Experience in the implementation (systems engineering), maintenance (system administration) and effectiveness of security infrastructure and security solutions.
- Experience in providing Cyber Security risk assessment, assurance and reporting activities.
- Experience using tools to identify vulnerabilities, providing remediation strategies and qualifying recommendations.
- Experience in performing architecture reviews to identify gaps in security, resulting in actionable recommendations.
- High attention to detail with good communication skills with stakeholders and clients, and experienced in technical writing.
- OT Cyber Security principles and measures.
- OT design standards, industrial network protocols and technologies
- Security hardening and optimization within control system/OT environments
- Understanding of the interface between OT and IT environments
- Application of best practices within control system/OT environments
- Demonstrated expertise in OT Security
- Experienced in industrial risk analysis and mitigation strategies.
- Understanding of cyber threats and vulnerabilities specific to industrial environments.
- Proven ability to collaborate with engineering and IT teams.
- Experience in applying Cyber Security standards and frameworks within an industrial context.