• 24x7 Monitoring and Alert Customers on Cyber, integrity alerts through SOC, NIDS
• Investigate and track incidents raised by CCSH, Customer, CSL, SOC
• Investigate and analyze security and integrity alerts according to defined process & procedures
• Plan, Develop, execute IR playbooks for OT
• Investigate and track incidents raised by CSLs or SOC
• Vulnerability management activities
• Conduct & animate training to various teams
• SOC operations, technology support and maintenance
• Cyber platform maintenance and support
• Analyse, deploy the 3rd Party Security process, products etc..
• Align with Schneider Digital cybersecurity teams on the Cybersecurity processes and guidelines.
• Risk assessment, highlight the risks to Business as an outcome of the assessment
• Research, develop new mitigation, remediation actions based on the latest threat landscape, intel
• Prepare reports, KPI dashboard for customers
• Perform inventory and design upskilling material (trainings, documentation, policies, procedures & guidelines, best practices)
Mandatory:
• Data Analytics, Automation, API, Tableau, Power BI, Python
• Demonstrated success in assessing, identifying, and addressing cybersecurity risks in an industrial environment
• Strong knowledge OT security, SOC operations, application security, vulnerability management, data protection, infrastructure security and information security
• Network knowledge: architecture, components, firewall configuration/IP, VLAN, subnets, protocols (SMB, LDAP, DNS, DHCP, TCP, HTTP, UDP, NTP)
• Investigation skills: Logs and PCAP (Packet Capture) analysis, network Forensic, OS Forensic and SOC, SIEM based analysis
• Reporting skills: investigation reporting, incident resolution reporting
• Incident Ticketing process
• Tools: Nessus Scanner, S1 EDR, Markdown, Wireshark, Office suite or equivalent
• SOC, SIEM, NIDS, IPS platforms, NMS EDR, EFW
• Customer interaction & consultative skills
Good to Have :
• Systems: Linux, Windows administration, SCADA, PLC, HMI, DCS
• Certifications: IEC62443, CISSP, CCNA, CCNP..
• Industrial architecture ,industrial protocol knowledge, IEC/NIST framework
Qualifications
•5-10 years IT/OT security, industrial cybersecurity and change management
•Bachelor's degree or equivalent work experience required
•Collaborative with ability to manage relationships across multiple functional areas & customers
•Excellent English mandatory