3 Easy Steps

  • 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

30

April

Ict Security Engineer

Ozzie Solutions Pty Ltd - Vermont, VIC

IT
Source: uWorkin

JOB DESCRIPTION

Role:

Responsible to establish, manage and administer the organization’s ICT security policies and procedures to ensure preventive and recovery strategies are in place, and to minimise the risk of internal and external security threats.

Responsibilities:

  • Taking inventory of client’s hardware & software assets and assessing those assets for security vulnerabilities, obsolescence, and other risks
  • Reviewing network architectures and determining if good practices are being followed (e.g., the “zones & conduits” concept, proper network segmentation, use of Industrial DMZ, etc.); and providing recommendations to comply with an applicable cybersecurity framework
  • Reviewing security products utilized (e.g., firewalls, IDS, IPS) and determining if they are configured properly
  • Deploying network infrastructure devices (e.g., switches, routers, etc.), security appliances (e.g., firewalls, IDS, etc.), and virtualization solutions
  • Reviewing security policies, plans, and procedures; assessing network monitoring capabilities; analyzing system logs, security events, and packet captures to identify security threats; and providing recommendations to comply with an applicable cybersecurity framework
  • Reviewing administrative, technical, and physical security controls and providing recommendations to mitigate the identified security risks
  • Performing vulnerability and risk assessments within manufacturing and critical infrastructure environments to identify security risks and threats (e.g., unsecured remote access points, suspicious remote connections, unauthorized devices on the network, etc.) and providing recommendation to remediate the identified issues
  • Creating detailed diagrams (e.g., network, cabling, server, rack, logical architecture, etc.), procedures, and plans (e.g., implementation, SAT, mitigation, etc.) as needed to support projects
  • Travel to the client’s site as required

Requirements:

A minimum Bachelor degree or higher qualification including 2-year full time relevant experience is a must. At least five years of relevant experience and/or relevant vendor certification may substitute for the formal qualification.

Skills and Personal Attributes:

  • Certified SCADA Security Architect (CSSA)
  • GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection)
  • ISA/IEC 62443 Cybersecurity Certificates
  • Networking certifications (e.g., CCNA, CCNP, CCIE, JNCIP-ENT, etc.)
  • Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.)
  • Understanding of MITRE ATT&CKS for ICS or NERC CIP frameworks
  • Understanding of general cybersecurity frameworks (ISO IEC 27001/27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53)
  • Ability to perform vulnerability/penetration testing in ICS/OT environment, and/or threat hunting
  • Meticulous attention to detail.
  • Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems.
  • A forensic approach to challenges
  • Ability to seek out vulnerabilities in IT infrastructures