OT Security Officer - Vulnerability
OT Security Officer - Vulnerability/Control Assurance Manager
Location - Scotland (Aberdeen, Perth, Inverness)
Salary - Up to £83,000
Are you a Control Assurance lead with Operation Technology experience? Who has experience assessing the effectiveness of systems, identifying vulnerabilities, and ensuring current processes and software is adequate in mitigating risks, looking to join a large, heavily regulated company building out there OT security function?
In this role you will be leading the assurance and testing of existing security controls, ensuring adherence to processes, monitoring and reporting on software vulnerabilities and directing audits, inspections and pen testing. Joining a growing Operational Technology security team protecting critical infrastructure.
Key responsibilities
- Leading the programme of audits and security assurance identifying vulnerabilities within existing controls. (monitoring current settings/configurations of security devices, review effectiveness of identity and access management proce3sses/systems)
- Developer processes/standards to assess security controls across OT estate.
- Monitoring/auditing supply chain to ensure security requirements are included within contracts and are delivered.
- Ensure vulnerabilities are documented and tracked/reported appropriately with SLA's.
- Contracting external resources to conduct independent control reviews and audits, including control maturity assessments, supply chain assessments and Penetration testing.
Key skills
- NSCS Cyber assessment framework (CAS - undertaking control and maturity assessments
- Understanding of control frameworks - NIST CSF and ISF/IEC62443
- OT experience within a large, regulated utility
- Experience in applying security controls across an OT environment
- Greenfield exp - the ability to identify and produce new tools, processes and training to enhance maturity of team
Reference: 2809083087
OT Security Officer - Vulnerability
Posted on Aug 14, 2024 by Sentinel
OT Security Officer - Vulnerability/Control Assurance Manager
Location - Scotland (Aberdeen, Perth, Inverness)
Salary - Up to £83,000
Are you a Control Assurance lead with Operation Technology experience? Who has experience assessing the effectiveness of systems, identifying vulnerabilities, and ensuring current processes and software is adequate in mitigating risks, looking to join a large, heavily regulated company building out there OT security function?
In this role you will be leading the assurance and testing of existing security controls, ensuring adherence to processes, monitoring and reporting on software vulnerabilities and directing audits, inspections and pen testing. Joining a growing Operational Technology security team protecting critical infrastructure.
Key responsibilities
- Leading the programme of audits and security assurance identifying vulnerabilities within existing controls. (monitoring current settings/configurations of security devices, review effectiveness of identity and access management proce3sses/systems)
- Developer processes/standards to assess security controls across OT estate.
- Monitoring/auditing supply chain to ensure security requirements are included within contracts and are delivered.
- Ensure vulnerabilities are documented and tracked/reported appropriately with SLA's.
- Contracting external resources to conduct independent control reviews and audits, including control maturity assessments, supply chain assessments and Penetration testing.
Key skills
- NSCS Cyber assessment framework (CAS - undertaking control and maturity assessments
- Understanding of control frameworks - NIST CSF and ISF/IEC62443
- OT experience within a large, regulated utility
- Experience in applying security controls across an OT environment
- Greenfield exp - the ability to identify and produce new tools, processes and training to enhance maturity of team
Reference: 2809083087
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog