Senior Network Cybersecurity Engineer (PSC)
Wood Digital Consulting (DC) is recruiting for a Senior Network Cybersecurity Engineer with significant experience in Automation and Control Network design and implementation to support our UK projects.
This 4-year project forms part of a 5-year client contract with a potential and likely 3-year extension.
The role is intended as home-based with the option to work from any Wood office in the UK if preferred. Mobility and travel to customer sites and face-to-face meetings with colleagues will be expected as required.
Applicant must be able to pass HMG Baseline Personnel Security Standard (BPSS) check.
The Senior Network Engineer will support the implementation of projects in line with company objectives including continuous improvement of margin, customer satisfaction, schedule, working capital, and safety performance.
The engineer will be responsible for:
* Discovering vulnerabilities and risks in networks, software systems, and datacentres with ongoing vulnerability scans, monitoring network data, and ensuring hardware and software applications are updated.
* The role will primarily focus on workflow and deployment for solutions for the Digital Integration service line.
* The role will also provide the same service for the wider System Integration service line.
The role requires being able to rapidly engage with clients and client stakeholders to understand the system upgrade objectives to achieve these objectives within the new design.
* Provides expertise in Network Design, implementation, and testing for networks to support Integrated Automation and Control Systems Solutions.
* Responsible for identifying/defining the required network to support the Automation and Controls requirement/solutions for the client.
* Development of Detailed Network Architecture.
* Development of Network Dataflow Diagram.
* Produce Cybersecurity requirement implementation specifications.
* Produce Network Schedules (IP addresses, Data communication, server & VM, Switch & firewall).
* Produce Testing procedures (FAT).
* Selection of suitable network components.
* Inter-discipline review of deliverables from other departments.
* Produce Material requisition and contribute to Technical Bid evaluation.
* Review Vendor Drawing and consolidate comments generated by other disciplines.
* Support the Lead Engineer in accomplishing project objectives.
* Apply integration concepts to a wide variety of systems and across multiple vendor platforms.
* Engineer technical aspects of automation project network design and/or implementation for assigned activities.
* Undertakes Cyber Security Risk Assessments providing advice and guidance for implementation of Cyber Security Risk Assessment findings mitigating actions.
* Support in evaluating client’s security posture, identify vulnerabilities, weaknesses, and areas for improvement.
* Stay up to date with the latest security trends, threats, and best practices.
* Provide support to standardising project execution/workflow.
Essential:
* Minimum BSc Degree or equivalent demonstrable experience.
* Significant experience and competency in Control System Network Design Engineering.
* Good understanding of IEC62443 Industrial Cyber Security.
* Good understanding of IEC 27001 / 2 Information Security Management.
* Good general knowledge of each Automation and Control engineering discipline.
* Experienced in writing Network specifications.
* Detailed experience with multiple system implementation projects and/or control system platforms.
* Experience in Brownfield upgrades/replacement automation and control projects.
* Experience of Networks containing Rockwell and Schneider PLC/SCADA systems is advantageous.
* Must have thorough knowledge of engineering practices, methodologies, and economic principles, calculation methods, design details, international codes and standards, procedures, and specifications.
* Knowledge of modern automation and control applications, tools, methodologies, or equal training/experience.
* Experience of OT Intrusion Detection Systems is advantageous.
* Good working knowledge of current industry-specific technology and the application of current engineering software/tools and trends.
* Inquisitive, well organized, and have a keen eye for detail.
* Good level of experience in a similar role.
* Hands-on experience of using cybersecurity tools.
* Good knowledge and understanding of cybersecurity standards, data protection frameworks, and maintaining compliance.
* Multi-sector knowledge and global project experience in relevant areas.
* Identifying, defining, and solving client problems.
* Excellent verbal and written communication skills.
Desirable:
* Good knowledge of process automation, dynamic/real-time systems, and relevant technologies.
* Good knowledge and experience in implementing security practices and controls related to architecture, governance, risk, and compliance management.
* Good knowledge and experience with vulnerability management, risk management, compliance, and penetration testing tools.
#LI-Hybrid
#J-18808-Ljbffr