Principal OT Cyber Security Engineer

Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs.

Role:

• 
  
• Lead OT cyber security project lifecycle activities to deliver secure by design Industrial Automation and Control Systems
  
• Be responsible for developing and supporting the growth of our OT cyber security consultancy services
  
• Manage continuous improvement of Bilfinger UK’s OT Cyber Security Management System (CSMS)
  

The Principal OT Cyber Security Engineer will take full responsibility for the successful delivery of cyber security projects (technical, quality, time and cost elements).

Key Activities:

Working co-operatively with the OT Cyber Security Manager, Technical Managers, Project Managers and engineering teams across a variety of Automation projects you will:

• 
  
• Lead OT cyber security project lifecycle activities to deliver secure by design IACS:
  
  • 
    
  • Facilitate and conduct ISA--3-2 based cyber security risk assessments to define risk based OT cyber security requirements
    
  • Create defence in depth, segmented system architectures
    
  • Develop secure by design IACS to meet client requirements including documenting OT cyber security requirements and specifications
    
  • Implement OT cyber security controls and countermeasures including:
    
    • 
      
    • Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices
      
    • Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc.
      
    • Cyber security applications for industrial control system environments:
      
      • 
        
      • Host Intrusion Detection (HIDS)
        
      • Malware detection and protection i.e. Endpoint Detection and Response (EDR)
        
      • Network Intrusion Detection (IDS)
        
      • Network monitoring
        
      • Security Information and Event Management (SIEM)
        
      
      
      
    
    
    
  • Support Project Managers with the planning and execution of OT cyber security aspects of projects to ensure they meet the time, cost and quality required by our clients
    
  
  
  

• 
  
• Responsible for developing and supporting the growth of our OT cyber security consultancy services by:
  
  • 
    
  • Evaluating new OT cyber security consultancy offerings and establishing our approach
    
  • Conducting OT cyber security gap assessments of procedural and technological controls against relevant frameworks and standards e.g. National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC suite, OG86 etc.
    
  • Carrying out a wide variety of site and desktop based vulnerability assessments on clients brown field IACS
    
  • Support clients in the creation and development of their own CSMS artefacts including policies, procedures, guidelines, specification and work instructions etc.
    
  
  
  

• 
  
• Manage continuous improvement of Bilfinger UK’s OT Cyber Security Management System
  
  • 
    
  • Support further development of cyber security documentation including policies, procedures and specifications
    
  • Grow out OT cyber security partner ecosystem
    
  • Ensure policies, procedures and specifications are being followed on projects by providing OT cyber security technical supervision and quality assurance through project surveillance e.g. design review, informal audits etc.
    
  • Promote and maintain high level of security hygiene within Bilfinger UK Automation department
    
  • Promote and facilitate OT cyber security knowledge sharing and learning from experience through, for example, internal training, lunch and learns, standardisation, best practices etc.
    
  • Attend and represent Bilfinger UK at industry OT cyber security groups and events
    
  • Contribute to the continuous professional development of the team by providing technical leadership and mentoring of junior engineers
    
  • Support Business Development team on opportunities including at client meetings, presentations/demonstrations, solutions optioneering etc.
    
  • Support Proposals team on technical solutions optioneering, bid production and technically reviewing bids
    
  • Help develop and foster relationships and partnerships with control system OEM/vendor OT cyber security teams and OT cyber security solution providers
    
  • Provide health and safety leadership by example
    
  
  
  

Skills & Experience:

• 
  
• At least 5 years of practical engineering experience in the application of OT cyber security to PLC, DCS, RTU, SCADA and HMI systems in at least one of Bilfinger UK’s key sectors.
  
  
• Practitioner of the ISA/IEC suite of standards, with particular focus on -2-1, 2-4, 3-2 and 3-3.
  
• Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations
  
• Broad technical knowledge of a variety of control system Original Equipment Manufacturers (OEMs) e.g. AVEVA, Rockwell Automation, Siemens, Schneider etc.
  
• Experience of industrial networking protocols e.g. CIP, DNP3, Modbus, PROFINET, IEC , PRP, REP
  
• Experience of working within and supporting the continuous improvement of a Quality Management System (QMS)
  

Qualifications:

• 
  
  
• Professionally registered engineer or working towards professional registration
  

• 
  
• Relevant OT cyber security certification e.g.:
  
  • 
    
  • ISA/IEC Cyber Security Expert
    
  • Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP)
    
  
  
  

If you wish to speak to a member of the recruitment team, please contact .