•24x7 Monitoring and Alert Customers on Cyber, integrity alerts through SOC, NIDS
•Investigate and track incidents raised by CCSH, Customer, CSL, SOC
•Investigate and analyze security and integrity alerts according to defined process & procedures
•Plan, Develop, execute IR playbooks for OT
•Investigate and track incidents raised by CSLs or SOC
•Vulnerability management activities
•Conduct & animate training to various teams
•SOC operations, technology support and maintenance
•Cyber platform maintenance and support
•Analyse, deploy the 3rdParty Security process, products etc..
•Align with Schneider Digital cybersecurity teams on the Cybersecurity processes and guidelines.
•Risk assessment, highlight the risks to Business as an outcome of the assessment
•Research, develop new mitigation, remediation actions based on the latest threat landscape, intel
•Prepare reports, KPI dashboard for customers
•Perform inventory and design upskilling material (trainings, documentation, policies, procedures & guidelines, best practices)
Mandatory:
•Data Analytics, Automation, API, Tableau, Power BI, Python
•Demonstrated success in assessing, identifying, and addressing cybersecurity risks in an industrial environment
•Strong knowledge OT security, SOC operations, application security, vulnerability management, data protection, infrastructure security and information security
•Network knowledge: architecture, components, firewall configuration/IP, VLAN, subnets, protocols (SMB, LDAP, DNS, DHCP, TCP, HTTP, UDP, NTP)
•Investigation skills: Logs and PCAP (Packet Capture) analysis, network Forensic, OS Forensic and SOC, SIEM based analysis
•Reporting skills: investigation reporting, incident resolution reporting
•Incident Ticketing process
•Tools: Nessus Scanner, S1 EDR, Markdown, Wireshark, Office suite or equivalent
•SOC, SIEM, NIDS, IPS platforms, NMS EDR, EFW
•Customer interaction & consultative skills
Good to Have :
•Systems: Linux, Windows administration, SCADA, PLC, HMI, DCS
•Certifications: IEC62443, CISSP, CCNA, CCNP..
•Industrial architecture ,industrial protocol knowledge, IEC/NIST framework
•5-10 yearsIT/OT security, industrial cybersecurity and change management