• 24x7 Monitoring and Alert Customers on Cyber, integrity alerts through SOC, NIDS

• Investigate and track incidents raised by CCSH, Customer, CSL, SOC

• Investigate and analyze security and integrity alerts according to defined process & procedures

• Plan, Develop, execute IR playbooks for OT

• Investigate and track incidents raised by CSLs or SOC

• Vulnerability management activities

• Conduct & animate training to various teams

• SOC operations, technology support and maintenance

• Cyber platform maintenance and support

• Analyse, deploy the 3rd Party Security process, products etc..

• Align with Schneider Digital cybersecurity teams on the Cybersecurity processes and guidelines.

• Risk assessment, highlight the risks to Business as an outcome of the assessment

• Research, develop new mitigation, remediation actions based on the latest threat landscape, intel

• Prepare reports, KPI dashboard for customers

• Perform inventory and design upskilling material (trainings, documentation, policies, procedures & guidelines, best practices)

Mandatory:

• Data Analytics, Automation, API, Tableau, Power BI, Python

• Demonstrated success in assessing, identifying, and addressing cybersecurity risks in an industrial environment

• Strong knowledge OT security, SOC operations, application security, vulnerability management, data protection, infrastructure security and information security

• Network knowledge: architecture, components, firewall configuration/IP, VLAN, subnets, protocols (SMB, LDAP, DNS, DHCP, TCP, HTTP, UDP, NTP)

• Investigation skills: Logs and PCAP (Packet Capture) analysis, network Forensic, OS Forensic and SOC, SIEM based analysis

• Reporting skills: investigation reporting, incident resolution reporting

• Incident Ticketing process

• Tools: Nessus Scanner, S1 EDR, Markdown, Wireshark, Office suite or equivalent

• SOC, SIEM, NIDS, IPS platforms, NMS EDR, EFW

• Customer interaction & consultative skills

Good to Have:

• Systems: Linux, Windows administration, SCADA, PLC, HMI, DCS

• Certifications: IEC62443, CISSP, CCNA, CCNP..

• Industrial architecture, industrial protocol knowledge, IEC/NIST framework

Qualifications

•5-10 years IT/OT security, industrial cybersecurity and change management

•Bachelor's degree or equivalent work experience required

•Collaborative with ability to manage relationships across multiple functional areas & customers

•Excellent English mandatory

Schedule: Full-time
Req: 009496