Description:
Join us in this role where you ll be working on our American projects, overseeing their construction and adherence to the requirements imposed by the OT Security legislation. A large part of this concerns compliance with NECR-CIP, combined with our internal requirement for building assets based on IEC 62443. The combination of the two standards will ensure a high level of cybersecurity for the assets.
Welcome to OT Systems Engineering
You ll be part of OT Security Engineering team where you, together with your colleagues, will enforce compliance with the cybersecurity regulations in the country in which we re constructing our assets, as well as our own internal requirements.
You ll play an important role in:
ensuring compliance with the local requirements
working across a range of packages to help ensure their compliance
being responsible for the delivery of our internal IT services
performing technical documentation review and OT Security Factory and Site Acceptance Tests.
The Consultant must bring his/her own PC and/or Iphone. External consultants equipment such as PCs, mobile phones and iPads must always be up-to-date with the latest iOS release. The owner must allow rsted s AirWatch security and management software for iPhones and iPads to be installed. The app is mandatory on all mobile devices used by rsted staff (including External consultants) to protect them from cybercrime. The owner must grant approval for rsted to remove apps, data and access from privately owned equipment if it is deemed to pose a risk in relation to rsted s security or the GDPR regulations, if the equipment is lost/stolen, or if the owner ceases to have an active contract with Magnit and/or rsted. When an external consultant leaves rsted, they must contact the IT Service Desk to remove all rsted apps and data. The IT Service Desk can only support privately owned equipment in connection with rsted s AirWatch security and management software.
Requirements:
To succeed in the role, you:
have practical experience with NERC-CIP, IEC 62443, and possibly ISO 27k series of standards
have experience with security testing in LV and SCADA/OT Control systems and Communication/IT systems
have experience with network concepts and technologies in particular segmentation
are good at collaborating with a range of stakeholders
have project management experience
Please assess this role if it shall be exempt or non-exempt according to FLSA. State the result of the assessment in the notes section in each candidate submission.