Analyst - OT Security - Information Technology Corpo

Description / Scope / Mission

The OT Security Analyst is a member of an international security group led by the Director – IT Security and Architecture located in Longueuil (QC, Canada).

He will be responsible for ensuring the security and integrity of our manufacturing and industrial control systems across all global sites (over 26 manufacturing sites worldwide).  As part of the Corporate/global Security team, he will be responsible of the implementation, enforcement and monitoring of the company worldwide OT security strategy and standards. 

The candidate will work with the Security team, the global Systems Administrators team and all the local (to plants) OT & Engineering teams worldwide to evaluate, recommend and install the corresponding security tools and best practices. 

He will be responsible for the implementation of the different solutions as well as their monitoring. 

He will see to the day-to-day operations of the in-place security solutions while identifying, investigating and solving security breaches detected.   He will be responsible of fulfilling all recommendations resulting from the different audits.  This Cyber-security specialist is part or the front line of defense for the safety and integrity of the company’sdigital information.

This person is expected to be fully aware of the enterprise’s OT security standards and to actively work towards upholding them.  As such, a strong knowledge of OT network architecture and infrastructure technical support expertise are basic requirements to understand the real impacts and intricacies of security tools, processes and rules.

Key Responsibilities/ Accountabilities

• Address all security incidents as they occur and look for long term, global, solutions.
• Lead or participate in OT security investigations.
• Assess needs for any security reconfigurations (minor or significant) form the current infrastructure and execute them if required. 
• Monitor all in-place OT security solutions for efficient and appropriate operations, including review of logs and reports of all in-place devices.  Interpret the implications of that activity and devise plans for appropriate resolution.
• Recommend and enforce best practices in OT infrastructure management.
• Recommend and test new OT security software and/or technologies.
• Participate in the deployment, integration and initial configuration of new OT security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures.
• Work closely with IT infrastructure and all local OT & Engineering groups to fully secure the manufacturing environment.
• Participate in the execution of vulnerability assessments, penetration tests and security audits.
• Recommend, schedule (where appropriate) fixes, security patches, disaster recovery procedures, and any other measures required.
• Create and maintain documentation of existing and future OT security infrastructure.
• Keep current with emerging OT security alerts and issues.
• Interact with vendors, outsourcers, and contractors to obtain or maintain protection services and products.

Education / Certification / Qualifications / Experience

• Proven experience in networking, routing & routing protocols (BGP, OSPF, RIP), switching, VLANS, wireless access point configuration, DMZ and RADIUS authentication.
• Knowledgeable of the best practices in OT infrastructure operations and maintenance
• Minimum 5 years of experience with firewalls, VLanning, troubleshooting, and problem resolution is desired
• Strong technical knowledge of current network protocols, operating systems, and standards.
• Experience with Windows servers and Linux preferred
• Threat hunting and log analysis expertise preferred
• Experience with Checkpoint firewalls and OT/IT protocols management is a plus

• Degree in the field of Computer Science, Engineering or other related field
• Five (5) years or more in OT Network Management related work experience
• Five (5) years or more in OT Security Management related work experience.
• Preferred certifications include:
  • Information Security Training
    • CompTIA Security+ (or other Information Security Training)
    • or Certified Information Security Manager (CISM)
    • or Certified Information Systems Security Professional (CISSP)
  • ITIL
• Knowledge of NIST security framework, CIS controls and C2M2 is a plus

Personal Attributes / Skills and abilities

• Team worker with a collaborative approach
• Ability to research and troubleshoot and investigate security issues.
• Strong problem solving, analytical methods and technical skills.
• Self-motivated and directed, with the ability to effectively prioritize and execute tasks in a high-pressure environment.
• Fast learner.
• Able to read and understand technical manuals, procedural documentation, and OEM guides.
• Ability to organize and manage multiple priorities.
• Self-starter with strong work ethic, positive attitude and strong attention to detail.
• Strong communication (both written and oral), interpersonal, team building and organizational skills.
• Available to travel around the world.
• English well spoken and written - English being the language used at KDC for international business relations.