Our client, a reputed industrial cyber security consulting division requires an OT Architecture Specialist to be placed in Dubai or Abu Dhabi. Whilst the candidates are allowed to work remotely, the role also requires candidates to travel as and when required between Dubai & Abu Dhabi due to project and site requirements. Please find the scope and key results area below,
· Work on cutting edge projects across a wide range of OT sectors, power, water, mining, transport sectors
· Bachelor’s or Matsers degree in IT/Cybersecurity and certifications in OT/PLC/SCADA and Cyber security. CeH and global certifications are acceptable too.
· Work on OT security architecture modelling projects covering: SABSA, TOGAF and IEC 62443
· Assist with OT security monitoring- SOC implementation projects
· Become an expert in the application of OT/ICS security industry standards
Key Results Areas:
Supports and contributes to the determination of client requirements, collecting data, delivering analysis and problem resolution. With peers undertakes the evaluation of recommended options, implementing when required. Collaborates with, and assists the facilitation with stakeholder groups, as part of formal or informal consultancy agreements. Seeks to fully address client needs, enhancing the capabilities and effectiveness of client personnel, by ensuring that proposed solutions are properly understood and appropriately exploited.
Defines, documents and carries out small projects or sub projects (typically less than six months, with limited budget, limited interdependency with other projects, and no significant strategic impact), alone or with a small team, actively participating in all phases. Identifies, assesses and manages risks to the success of the project. Prepares realistic plans (including quality, risk and communications plans) and tracks activities against the project schedule, providing regular and accurate reports to stakeholders as appropriate. Monitors costs, timescales and resources used, and takes action where these deviate from agreed tolerances. Ensures that own projects are formally closed and, where appropriate, subsequently reviewed, and that lessons learned are recorded
OT Security Risk Management
Conducts security risk and vulnerability assessments for defined business applications or ICS installations in defined areas and provides advice and guidance on the application and operation of elementary physical, procedural and technical security controls (e.g. the key controls defined in IEC 62443 and ISO27001). Performs risk and vulnerability assessments, and business impact analysis for medium size control systems. Investigates suspected attacks and manages security incidents.
OT Security Architecture
Supports and contributes to the use of appropriate tools, including logical models of components and interfaces, to contribute to the development of systems architectures in specific business or functional areas. Produces detailed component specifications and translates these into detailed designs for implementation using selected products. Within a business change programme, assists in the preparation of technical plans and cooperates with business assurance and project staff to ensure that appropriate technical resources are made available. Provides advice on technical aspects of system development and integration (including requests for changes, deviations from specifications, etc.) and ensures that relevant technical strategies, policies, standards and practices are applied correctly.
OT Data Modelling and Design
Investigates OT data requirements, and applies data analysis, design, modelling, and quality assurance techniques, to establish, modify or maintain data structures and their associated components (entity descriptions, relationship descriptions, attribute definitions). Provides advice and guidance to database designers and others using the data structures and associated components.