OT Cybersecurity Specialist

OT Cybersecurity Specialist

Our client is a US-based Fortune 500 global E&P company with almost 100 years of operations spanning 4 continents. Their focus on low-cost, high-return assets and commitment to integrity and social responsibility have made them an enduring industry leader.

Location:       Houston, TX

Summary:   The OT Cybersecurity Specialist role is responsible for ensuring compliance with the Process Control Domain (PCD) Cybersecurity Policy and Standards and protecting the PCD from an evolving cyber threat landscape. The PCD Cybersecurity Policy defines guiding principles for implementing, maintaining, and operating networks and systems for a secure PCD. The OT Cybersecurity Specialist will assist and perform Tier 3 assessments with Technical Authorities to ensure compliance of PCD Elements and develop remediation plans in conjunction with the Technical Authorities and the Cybersecurity team for deficiencies. The OT Cybersecurity Specialist will work with operational personnel to communicate necessary remediation outages and follow the MOC process for implementation. The OT Cybersecurity Specialist assists in managing access control processes and the identity lifecycle for PCD elements.

Supervisor:   Manager – Maintenance & Planning

Job Duties

• Ensure compliance with the Process Control Domain (PCD) Cybersecurity Policy and Standards.
• Manage logical access to PCD Elements through the entire identity life cycle including onboarding, offboarding, access permissions, and password rotation.
• Remediate PCD Element vulnerabilities through patching and configuration (i.e., firmware, operating system, drivers, applications).
• Review PCD Element logs for anomalies, indicators of compromise, or other events of note.
• Facilitate site specific cybersecurity incident response for the PCD. Review and maintain facility specific IRP documents.
• Maintain and manage PCD network perimeter and segmentation through firewall administration.
• Standardize and maintain PCD element configurations.
• Maintain and update endpoint protection (i.e., antimalware) capabilities on PCD Elements.
• Create, and test Disaster Recovery Plans (DRP) for PCD elements and applications.
• Create and maintain PCD asset and facility documentation, such as specifications, for asset or facility cybersecurity controls aligning with PCD Cybersecurity Policy and Standards.
• Assist and participate in cybersecurity awareness for site specific and enterprise programs to ensure all PCD users are mindful.
• Participate in cybersecurity planning, governance, and risk management activities with associated technical authorities.
• Manage PCD Elements including servers, domain controllers, virtual environments, backup and restore equipment and services, network devices, and application life cycle ensuring PCD elements are under support and critical spares are available.
• Assisting with cybersecurity interests of new projects that will impinge upon PCD elements.
• Provision of necessary documentation (Safe Work Instructions and Procedures) providing instructions for others to undertake specific PCD duties.
• Auditing of SAP closure reports to ascertain work scopes undertaken comply with the requirements of the PCD Cybersecurity Policy and Standards.
• Provision of assistance for auditing team support and closing out audit items in a planned and timely manner.
• Management of asset vulnerability log, and remediation planning.

Job Requirements

• High school diploma or equivalent required.
• Associates or technical degree preferred.
• Must have valid driver’s license.
• BOSIET (or similar) for GOM (quarterly offshore visits required) position.
• Experience with the following:
  • Industrial Control Systems (i.e., DCS, ESD, SIS, PLC, HMI, SCADA)
  • Networking Fundamentals (i.e., Routing, Switches, IP Management)
  • Firewall Administration (i.e., Palo Alto, Juniper)
  • Microsoft Windows Server Administration
  • Vmware ESXi & vCenter
  • Antimalware applications (i.e., McAfee)
  • Claroty CTD & SRA experience would be beneficial
• Cybersecurity Fundamentals (i.e., Security+).
• Excellent writing and verbal communication skills.
• Knowledge of safety requirements and practices.
• Knowledge of NIST 800-82 & IEC 62443.
• Knowledge of Management of Change procedures and protocols.

Work Environment

• Field Time (“go see”, meetings/collaboration) – 25%.
• Desk Time (admin, invoices, data analysis, documentation creation or reviews, emails) – 75%.