Ot Cybersecurity Analyst-pri 3344 - Toronto, Canada - Raise

Raise
Raise
Verified Company
Toronto, Canada

1 month ago

Sophia Lee

Posted by:

Sophia Lee

beBee Recruiter
Description

SUMMARY

RESPONSIBILITIES

  • Perform asset discovery or deploy asset management solutions to establish inventory of all connected IT and OT assets that exist within the OT environment
  • Establish dependencies, inventory attributes and information across assets in order to support cybersecurity activities
  • Maintain and update inventory of all connected IT and OT assets and devices within the organisation
  • Document change logs and include information about modifications that impact the cybersecurity requirements of assets (availability, integrity, confidentiality)
  • Monitor configuration of assets for consistency against established baselines throughout the assets' life cycle
  • Establish, review or update configuration baselines for inventoried assets in order to drive cybersecurity objectives
  • Manage OT cybersecurity risk and compliance:
  • Assist in performing risk analysis or security reviews on OT systems and environment
  • Support the proposal of possible recommendations for inclusion in the risk mitigation strategy Establish and drive cybersecurity strategies, policies, standards and guidelines according to organization's needs and legislation
  • Assist with the implementation of cybersecurity policies, standards and procedures on OT systems
  • Monitor third party compliance with organizational cyber security policies, standards and procedures
  • Monitor users' adherence to cyber security policies, standards and procedures
  • Assist in developing OT technical documentation, policies, procedures and standards
  • Improve and maintain cybersecurity posture of OT systems:
  • Conduct system hardening and cybersecurity administration for identified OT systems
  • Assist in OT system vulnerability mitigation and patches by working with relevant personnel to deploy regular postpatching update and perform testing of patches
  • Support the implementation of agreed security system changes and maintenance routines
  • Maintain documentation of all maintenance procedures and tests on OT systems
  • Assist with vulnerability assessments and identification.
  • Partner with operational and cybersecurity personnel to plan and monitor periodic maintenance of OT security infrastructure
  • Implement encryption of OT assets for data in transit and data in rest
  • Conduct OT security posture assessment and upkeeping
  • Establish authentication and identification rules across devices and users to drive cybersecurity objectives within the OT environment
  • Monitor third party and vendor's access and activities in the OT environment
  • Assist in performing security reviews on existing controls and identify cybersecurity gaps
  • Assist in development of cybersecurity requirement specifications for new systems or devices
  • Reference architectural guidelines and validate designs against requirement specification
  • Assist in the implementation of the OT cybersecurity control framework
  • Promote knowledge sharing in both the IT and OT cybersecurity teams
  • Articulate potential pain points and solutions in aligning IT and OT departments
  • Manage crossteam strategic projects according to guidance from the senior leadership
  • Work with the cybersecurity team to conduct research to develop or deploy new capabilities and solutions for OT cybersecurity.

QUALIFICATIONS

  • 7+ years of experience working with Operational Technology (OT) systems in Critical Infrastructure.
  • 3+ years of experience in Cyber Security with advanced knowledge of cyber security domains such as OT/ICS security architecture, security assessment, GRC implementation, and security strategy
  • Access and Control Management
  • Application Security Management
  • Asset Identification and Inventory
  • Cryptography and Encryption Emerging Technology Synthesis
  • OT Network Administration and Maintenance
  • OT Network Security and Segmentation
  • OT Compliance and Assurance
  • OT Cybersecurity Education and Awareness
  • OT Cybersecurity Governance and Programme Management
  • OT/ICS Cybersecurity Risk Assessment and Mitigation
  • OT Vulnerability and Patch Management
  • OT/ICS Security Architecture Review
  • OT Security Metrics and Controls
  • Stakeholder Management
  • Supply Chain Management
  • OT/ICS security architecture,
  • OT/ICS security monitoring tools implementation,
  • OT/ICS risk assessment and mitigation
  • Industrial IoT security and cloud management
**WHO ARE WE?
More jobs from Raise
See all jobs of Raise