Responsibilities
- Collaborate with leadership to develop and execute a unified network and cybersecurity strategy for HVDC Control & Protection systems that supports organizational objectives.
- Partner with global cybersecurity leadership to manage and guide a distributed team of network and security specialists.
- Serve as the primary contact for cybersecurity and networking issues in project settings, including assessment of third-party vendor solutions interfacing with control systems.
- Assist bidding teams with customer-specific cybersecurity and networking requirements, requiring familiarity with standards such as EU NIS, NERC, and BDEW.
- Provide technical support to R&D and new product introduction teams on topics including IEC 62443 compliance, threat modeling, and incident response planning.
- Enforce compliance with Secure Deployment Guides for both internal HVDC control systems and external system integrations.
- Ensure all project participants adhere to established Security Assurance Plans throughout the project lifecycle.
- Perform system hardening in substation environments following CIS and NIS regulatory guidelines.
- Maintain accurate and policy-compliant documentation of technical outputs for assigned projects and tasks.
- Present and defend technical evaluations, analyses, and solutions to customers and technical stakeholders.
- Design and deploy foundational IT infrastructure from scratch, including networking, virtualization, and server OS configuration.
- Demonstrate understanding of vulnerability management specific to industrial control systems.
- Understand the industrial patch management lifecycle and its integration with vulnerability management practices.
- Lead end-to-end design, configuration, and testing activities to meet project timelines and budget constraints.
- Adhere to departmental engineering standards, design protocols, and review procedures.
- Supervise testing and factory acceptance test (FAT) activities for control systems.
- Support field operations related to control system LAN network deployment and commissioning.
- Possess in-depth practical expertise with the IEC 62443 security standard.
- Understand secure remote access solutions leveraging VPN and PKI technologies.
- Have experience with virtualization platforms including VMware, HyperV, and Proxmox.
- Be proficient in configuring server operating systems.
- Be skilled in setting up next-generation firewalls.
- Be familiar with Intrusion Detection Systems and their operational use.
- Understand anti-malware technologies and disaster recovery mechanisms.
- Possess working knowledge of core cybersecurity domains such as VPNs, secure network access, endpoint protection, and network infrastructure security.
Other
Relocation Assistance Provided: No
