Lead, Cybersecurity Engineer
Schneider Electric
Bengaluru, Karnataka, India
• 24x7 Monitoring and Alert Customers on Cyber, integrity alerts through SOC, NIDS • Investigate and track incidents raised by CCSH, Customer, CSL, SOC • Investigate and analyze security and integrity alerts according to defined process & procedures • Plan, Develop, execute IR playbooks for OT • Investigate and track incidents raised by CSLs or SOC • Vulnerability management activities • Conduct & animate training to various teams • SOC operations, technology support and maintenance • Cyber platform maintenance and support • Analyse, deploy the 3rd Party Security process, products etc.. • Align with Schneider Digital cybersecurity teams on the Cybersecurity processes and guidelines. • Risk assessment, highlight the risks to Business as an outcome of the assessment • Research, develop new mitigation, remediation actions based on the latest threat landscape, intel • Prepare reports, KPI dashboard for customers • Perform inventory and design upskilling material (trainings, documentation, policies, procedures & guidelines, best practices) Mandatory: • Data Analytics, Automation, API, Tableau, Power BI, Python • Demonstrated success in assessing, identifying, and addressing cybersecurity risks in an industrial environment • Strong knowledge OT security, SOC operations, application security, vulnerability management, data protection, infrastructure security and information security • Network knowledge: architecture, components, firewall configuration/IP, VLAN, subnets, protocols (SMB, LDAP, DNS, DHCP, TCP, HTTP, UDP, NTP) • Investigation skills: Logs and PCAP (Packet Capture) analysis, network Forensic, OS Forensic and SOC, SIEM based analysis • Reporting skills: investigation reporting, incident resolution reporting • Incident Ticketing process • Tools: Nessus Scanner, S1 EDR, Markdown, Wireshark, Office suite or equivalent • SOC, SIEM, NIDS, IPS platforms, NMS EDR, EFW • Customer interaction & consultative skills Good to Have : • Systems: Linux, Windows administration, SCADA, PLC, HMI, DCS • Certifications: IEC62443, CISSP, CCNA, CCNP.. • Industrial architecture ,industrial protocol knowledge, IEC/NIST framework Qualifications •5-10 years IT/OT security, industrial cybersecurity and change management •Bachelor's degree or equivalent work experience required •Collaborative with ability to manage relationships across multiple functional areas & customers •Excellent English mandatory