Consultant Security - Monterrey, México - Axen

Axen

Empresa verificada

Monterrey, México

hace 2 semanas

Publicado por:

Rodrigo Fernández

Reclutador de talento para beBee

Descripción

At AXEN IT Consulting we are growing exponentially with clients with great growth projections, We have more than 25 years of experience in the information technology services market, Focused on our growth and at the same time offering improvement plans to our talent, We are currently looking for " Consultant Security " with the profile:

Requirements:

Understanding of Industrial Processes:

Knowledge of various industrial sectors, processes, and technologies is crucial to comprehend how cyber threats can impact operations and safety within these environments.

Familiarity with OT Protocols and Standards:
Understanding and experience with OT-specific communication protocols and standards like Modbus, DNP3, OPC UA, IEC 61850, etc.

Network Security and Architecture:

Expertise in designing, implementing, and securing OT network architectures, including segmentation, VLANs, firewalls, and virtual private networks (VPNs).

Risk Assessment and Management:

Ability to assess cybersecurity risks in OT environments, perform risk analysis, and develop strategies to mitigate and manage risks effectively.

Incident Response and Forensics:

Proficiency in responding to and investigating cybersecurity incidents in OT, including incident handling procedures, forensics, and identifying the root cause of incidents.

Security Controls and Technologies:

Knowledge of security controls specific to OT, such as intrusion detection systems (IDS), intrusion prevention systems (IPS), endpoint protection, secure coding practices, and access control mechanisms.

Security Policies and Compliance:

Understanding of regulatory requirements and compliance frameworks related to OT security, and the ability to develop and implement security policies and procedures accordingly.

Patch Management and Vulnerability Assessment:

Skills in identifying vulnerabilities in OT systems, conducting vulnerability assessments, and implementing effective patch management strategies to mitigate risks.

Industrial Control System (ICS) Security:

Understanding of ICS components, architectures, and security measures specific to ICS, including PLCs, RTUs, HMIs, SCADA systems, and other critical devices.

Cyber Hygiene and Best Practices:

Knowledge of fundamental cybersecurity practices, including secure configurations, password management, software updates, and employee training and awareness.

Security Monitoring and Threat Detection:

Ability to implement security monitoring solutions and utilize tools for detecting anomalies, intrusions, and potential cyber threats within OT networks.

Collaboration and Communication:

Strong communication and collaboration skills to effectively work with cross-functional teams, including IT professionals and engineers, to align OT cybersecurity with broader organizational goals.

Responsibilities:

Manage all aspects of Information Technology cybersecurity controls for the USA & Canada operations of Cemex.
Manage all aspects of Operational Technology cybersecurity controls for the USA & Canada operations of Cemex.

Keep and guarantee information security SLA's in close coordination with the Enterprise Information Security Management department of P&IT Central and any Information Security outsourcing partners.

Manage activities related to internal and external audits to guarantee compliance with local cybersecurity laws pertinent to the countries and state regulations in coordination with the Enterprise Risk Management, Process Assessment, Internal and External auditors.

Ensures compliance with global information security standards in accordance with ISO 27001, Sarbanes-Oxley, GDPR, PCI, and HIPPA.
Guarantee and keep the Disaster Recovery and Business Continuity Plans updated and relevant.

Benefits:

Job offer based on your expectations
Growth and job stability.
Benefits superior to those of law.

5 years