Role Title: Network Analyst - Programmable Logic Controller
Hybrid, with some travel required

Main Accountabilities

• Day to day service delivery and operational support (L1 to L3)
• Provide technical Support to Service Desks and 3rd party suppliers for incidents, problems and changes related to in-scope environment.
• Manage day to day service delivery and operational support with 3rd party suppliers and consultants (vendor relationship management)
• Design, Document, implement and support IT Network & Security architecture and solutions complying to Information Security Policies and internal IT Directives
• Follow-up on IT Network & Services remediation plans
• Support projects and related activities as IT Network and/or Security subject matter expert.
• Analyze technology industry and market trends and determines potential impact upon the enterprise.
• Development of Standard Operating Procedures

Knowledge, Skills, and Experience

• 10 plus years of IT work experience in multinational environment
• Results oriented and strong track-record for on time delivery of projects and development of new IT solutions.
• Experience in documentation and designing.
• Expertise in Network and Security technologies and architecture design
  • SD-WAN and WAN Op (Cisco Meraki, Riverbed SteelConnect + Riverbed SteelHead)
  • Cisco WAN, LAN & WLAN (Switching, routing, DNA center, WLC...)
  • Security and proxy (Checkpoint Firewall, F5, Zscaler cloud)
  • OT-IT Segmentation on industrial / plant & production environment
  • Cloud and Hybrid Cloud (GCP, AWS, Azure)
  • Remote access (Azure AVD, Microsoft AOVPN)
• Excellent knowledge on Network and Security technology vendors (Cisco, Meraki, Checkpoint, F5, Riverbed) and relevant equipment market, with vendor management best practices
• Strong knowledge of ITIL and IT governance best practices
• English (fluent), another language is a plus
• Network and Security certifications (Cisco, Checkpoint, Riverbed, F5) a plus
• Strong Communications Skills
• Operating in a strong team environment
• International travel might be required.
• Teamwork spirit and excellent communication skills

Overview:
The Network & Security Analyst - PLC plays a crucial role in ensuring the security and reliability of Client's industrial control systems (ICS) and programmable logic controllers (PLCs). This individual demonstrates a high level of professionalism, prioritizing the protection of critical infrastructure and data. Responsibilities include:
o Designing, implementing, and maintaining network and security architectures for ICS and PLCs
o Conducting vulnerability assessments and penetration testing to identify and mitigate security risks
o Monitoring and analyzing network traffic to detect and respond to security incidents
o Developing and implementing security policies and procedures to ensure compliance with industry standards and regulations
o Collaborating with cross-functional teams, including operations, engineering, and IT, to ensure a comprehensive approach to security

Essential Functions:

Main Accountabilities:
o Network and Security Architecture: Design, implement, and maintain network and security architectures for ICS and PLCs, considering factors such as scalability, reliability, and security best practices.
o Vulnerability Assessment and Penetration Testing: Conduct vulnerability assessments and penetration testing to identify and mitigate security risks in ICS and PLC environments.
o Network Traffic Monitoring and Analysis: Monitor and analyze network traffic to detect and respond to security incidents, including unauthorized access attempts, malware infections, and denial-of-service attacks.
o Security Policy and Procedure Development: Develop and implement security policies and procedures to ensure compliance with industry standards and regulations, such as IEC 62443 and NERC CIP.
o Cross-Functional Collaboration: Collaborate with cross-functional teams, including operations, engineering, and IT, to ensure a comprehensive approach to security, considering operational requirements and technical constraints.

Impact/Dimensions:
o Strategic Impact: The Network & Security Analyst - PLC plays a critical role in protecting Client's critical infrastructure and data, ensuring the continuity of operations and minimizing the risk of financial and reputational damage.
o Annual Budget: Contributes to the overall cybersecurity budget, which is in the millions of dollars.
o Number of Employees Supervised: May supervise a team of junior security analysts or engineers.

Key Performance Indicators (KPIs):
o Number of security incidents detected and resolved
o Percentage of successful vulnerability assessments and penetration tests
o Compliance with industry standards and regulations
o Mean time to detect and respond to security incidents
o Employee satisfaction with security awareness training

Major Opportunities and Decisions:
o Identifying and prioritizing security risks in ICS and PLC environments
o Balancing security requirements with operational needs
o Making recommendations for security investments and improvements
o Responding to and managing security incidents
o Staying up-to-date with the latest security trends and technologies

Management/Leadership:
o Demonstrates leadership in the area of network and security for ICS and PLCs
o Provides guidance and mentorship to junior security analysts or engineers
o Collaborates effectively with cross-functional teams to influence decisions and drive security initiatives
o Communicates effectively with technical and non-technical audiences about security risks and solutions

Key Relationships, Stakeholders & Interfaces (External & Internal):
o Internal: Operations, engineering, IT, senior management
o External: Cybersecurity vendors, industry associations, regulatory bodies

Knowledge and Technical Competencies:
o Strong understanding of network and security concepts, protocols, and technologies
o Experience with ICS and PLC security, including IEC 62443 and NERC CIP
o Proficiency in vulnerability assessment and penetration testing tools and techniques
o Knowledge of security policies and procedures, risk management, and incident response
o Excellent communication and interpersonal skills
o Ability to work independently and as part of a team

Education/Experience:
o Bachelor's degree in computer science, information technology, or a related field
o 5+ years of experience in network and security, with a focus on ICS and PLC security
o Experience with vulnerability assessment and penetration testing
o Certifications in security-related disciplines, such as CISSP, CISM, or CEH, are desirable

---