ICS Cyber Security Consultant

ICS Cyber Security Consultant Houston, TX Long Term Contract Job Description:

The Senior Analyst, Technology Security (ICS) reports to the Manager, Technology Security and is a technical expert for plant control systems networks and computing assets, ICS cybersecurity best practices, and ICS cybersecurity compliance programs. The position is responsible for hands-on troubleshooting, administrating, supporting, maintaining, and improving control system networks, computers, applications, and cybersecurity initiatives including documentation. The Senior Analyst with direction from the Manager, Technology Security and input from the Control Systems Engineer will provide support for development and execution of ongoing infrastructure and cybersecurity projects.

Responsibilities And Essential Duties:

Support execution and development of infrastructure/cybersecurity projects and major capital projects. Build and administer the Maritime Transportation Security Act (MTSA) Cybersecurity compliance program. This includes but is not limited to developing/maintaining a Cybersecurity Plan, auditing, and updating the Plan; ensuring the Cyber Incident Response Plan is executed and exercised, ensuring adequate training of personnel, and compliance with the Plan. Serve as the cybersecurity advisor to the Controls Systems experts. Monitor with the use of cybersecurity program tools, the health of control system software, hardware, and networks, troubleshoots hardware, software, and network issues, performs hardware replacements, performs software corrections, and schedules upgrades as needed. Provide Controls Systems support to Maintenance and Operations groups to keep systems operational. Maintain, troubleshoot, and improve existing cybersecurity management systems including endpoint security, patch management, logging, asset monitoring, access control, IDS, Active Directory Group Policies and administration, firewall rules, and network configuration management. Support development of cybersecurity framework including creation/revision of policies, guidelines, standards, and procedures. Support development of practical ICS Asset Management KPIs and associated reporting. Participate in ICS Security Incident Response. Use sound engineering practices, plant standards, and specifications to ensure that documentation for the Controls Systems is maintained properly. Maintains the controls systems asset inventory and system architecture documentation. Evaluate database/automated solutions to keep these up to date. Thoroughly understand the technical Management of Change (MOC) process and utilize it in support of capital projects and routine facility changes. Support development of risk assessment and cybersecurity Management of Change process. Develop design basis, preliminary estimates, and schedules for project design scopes. Work with multidisciplinary Technical Services team to define problems, establish work scopes, prepare task budgets and schedules, plan work, provide technical direction, and report the work status to management. Reinforce safety and environmental awareness through frequent job observations and by interfacing with plant personnel. Interact with and support IT, Technology Security, Site Operations, Regulatory Affairs, and other departments as required. The duties and responsibilities described above are not a comprehensive list, and additional tasks may be assigned to the employee from time to time, or the scope of the job may change as necessitated by business demands.

Knowledge And Skills:

Knowledge :

Strong understanding of ICS cybersecurity standards/best practices and systems administration in an operating facility. Strong understanding of building and maintaining ICS cybersecurity compliance programs. Knowledge of secure network design and architecture, active directory management and GPO development, vulnerability management, systems hardening, network and asset monitoring and troubleshooting and backup and recovery systems. Knowledge of network diodes, Windows, Linux, VMWare, HyperV and Cisco platforms. Knowledge of cyber risk assessment methodology and incident response. Knowledge of Yokagawa/GE/Allen Bradley systems is a plus.

Skills :

Strong leadership and administrative abilities are required. An acute sensitivity to safety issues in a hazardous environment. Exceptional written, verbal and interpersonal communication skills. Ability to communicate effectively at all levels of an organization and with individuals and groups from different disciplines, industries, and governmental agencies. Able to work with a culturally diverse group of technical individuals whose skills cover the range required to engineer, operate, and maintain the LNG terminal and Liquefaction production facilities. Possess the personality and ability to relate to and to establish a mutually respectful relationship with 1) management, 2) peers and 3) the various facility level workers (Plant Manager, plant supervision, and plant workers) whom are all responsible for ensuring good operations. Project management skills to organized, planning skills, able to manage multiple activities and programs in timely fashion and with a high degree of accuracy, able to meet work deadlines. Exceptional problem solving and analytical skills. Computer savvy including Microsoft Office Suite including Word, Excel, Access, Project, and PowerPoint. Must have and maintain a Transportation Worker Identification Credential (TWIC).

Education And Experience:

Education, Training and Certifications:

Bachelor s degree in Computer Engineering, Computer Science, or related cybersecurity field is required. Master s degree preferred. Security Certifications such as

CISSP, CCNA, GISCP, ISA/IEC 62443

Cybersecurity Expert, or GICSP highly preferred.

Experience:

Minimum ten (10) years relevant work experience within cybersecurity space is required. Must have some ICS cybersecurity experience working with an operating LNG, petrochemical, NGL, cryogenic natural gas processing, hydrocarbon processing, defense, and/or other critical infrastructure facility.