Cyber Security

Skills

Maintain a strong relationship with engineering plant control and plant management for consulting and supporting the implementation of cybersecurity risk mitigation measures and technical issues on security aspects of process automation systems (e.g. domains time synchronization license management firewalls patching server hardening etc.) Hands on implementation of IT Security for IT-Systems and IT-Networks on production environments Acts as liaison for OT specific Incident Response. Liaison with SOC Incident Response teams Local OT Security process control engineering vendors and IT for incident response. Identify and report local awareness and training needs within process control engineering and plant management. Facilitate local communication to maintain higher awareness. Contribute to regional and global experience exchange and knowledge availability regarding OT security for production environments including internal experts from engineering and process control and external experts from suppliers and other companies. Demonstrated ability to collaborate with multiple business units in coordination of the implementation and operation of the IT/OT hardware infrastructure network and core configurations. Conduct vulnerability assessments of OT networks for cybersecurity risk management and/or compliance purposes. Work with incident response teams to perform detailed post\-event analysis of unusual events and direct needed procedure or process changes in response. Resolves technical issues analyze implications to the plants operations and be able to communicate them with applicable stakeholders within the manufacturing and engineering teams

Description

Lamb Weston is looking for an Engineer Operation Technology CyberSecurity to support the company’s cybersecurity program. The OT Cybersecurity Engineer will be a crucial member of our Cybersecurity organization in the areas of OT/ICS/DCS/SCADA cybersecurity whose mission is to improve the safety, security, and reliability of our OT environments.

The program’s focus is a risk-based approach through resiliency, situational awareness, and preparedness. In this role the OT Security Sr. Engineer will support the OT Manager in implementing the service methodology, scoping tools and building out the OT security practice. The role is also accountable for working in close collaborations with Global Engineering, Global Manufacturing, Process Control Engineering, Plant Management, Physical Security and the different IT groups (Cybersecurity, Infrastructure & Operations, IT Supply Chain, etc.) and providing security training and awareness to the company’s production centers. The OT Engineer will work as a part of a team to support plant engagement, security assessments and implement security capabilities.

Responsibilities

• Bachelor’s degree in Cybersecurity, Industrial Cybersecurity, Cyber\-Physical Systems, Computer Science, Information Systems, Computer Engineering, Electrical Engineering, or equivalent relevant experience
• 4+ years of industrial cybersecurity experience
• Knowledge of security principles and cybersecurity technologies, as well as industry standards IEC 62443 (3-3, 3-2), NIST CSF, NIST 800-82 Rev 2, C2M2, NERC-CIP, etc.
• CISA, CISM, or CISSP certification preferred.
• Ability to travel 25%-50% of the time depending on candidate’s location.
• Skills:
• Experience in a manufacturing environment with Manufacturing and global companies.
• Ability to be looked upon as the trusted cybersecurity advisor for all the supported production and supply chain facilities.
• Advanced knowledge of networks and control systems utilized by critical infrastructure sectors, and of the O/T Process Control software/components space.
• Understanding of Cybersecurity domains and the ability to apply concepts to the business unit.
• Communication Skills –interpersonal proficiency to help you interact, communicate, and collaborate with others effectively.
• Experience in the capabilities and/or configuration of cybersecurity controls, specifically those relating to firewalls, identity, and access control, zero\-trust security, authentication, and authorization, anti\-virus/anti\-malware, patch management, network, and system hardening, SIEM implementation, and/or tuning, and logging
• Experience with security engineering principles, various cybersecurity assessment methodologies, security control implementation, and validation, and system life\-cycle practices
• Demonstrate an understanding of operational security practices specific to engineering and/or security consulting
• Soft skills - Tenacious Problem solving- Unselfish collaborator- Intellectual curiosity- Dedicated to continuous improvement
• Demonstrated ability to self-motivate and work as part of a team in a production environment
• Strong ability to think logically and analytically, problem-solve, build consensus, and lead initiatives in an organized and efficient manner