Senior Network Engineer
Lincoln Financial
AWSAzureCloudDNSFirewallsiOSSwitching
Business Information Security Officer
LyondellBasell
full-time
Posted on:
Origin: • 🇺🇸 United States
Visit company websiteJob Level
SeniorLead
Tech Stack
Cyber Security
About the role
- Provide leadership to regional BISOs for day-to-day prioritization, project implementation, and troubleshooting technical issues
- Oversee operation of regional and local IT and ICS computing systems and security software including hardware and software lifecycle (Firewall, Anti Malware, Patch and Asset Management)
- Ensure all regional sites’ networks and systems comply with Corporate and Industry standards
- Contribute to internal documentation and standards (build documents, operational excellence, Disaster Recovery, Business Continuity, security whitepapers, Technical Designs)
- Validate translation of company policies into local languages when capable
- Advise or consult on OT changes initiated by IT and Site Management
- Participate in Purdue Level 2 and 3 monitoring, including review, validation and reporting of security metrics
- Assist in Operational Excellence audit support, Site Vulnerability Assessments and Cyber Process Hazard Analysis
- Lead project design and implementation
- Facilitate forensics investigations and incident follow-up
- Support design, implementation and documentation of security OT and M&A projects and initiatives
- Ensure effective regional security awareness program implementation and training
- Lead technical direction and strategy for ICS systems architecture and security
- Improve overall cyber resilience according to BSS roadmap
- Analyze intrusion protection processes and lead improvement efforts through automation, integration, and aggregation
- Provide information protection expertise to IT operational teams to ensure systems are properly protected and monitored by design
- Communicate threats appropriately and profile new/emerging threats
- Serve as member to event response team, providing mentoring while performing Level 2 support
- Contribute to future state technology roadmap and set technical direction for ICS systems architecture and security
- Understand security vulnerability management process and conduct vulnerability assessments for IT and ICS infrastructure, including mitigation and patch testing
Requirements
- Bachelor’s degree in an appropriate field, or equivalent professional experience
- Minimum of ten (10) years of experience in information security, information technology (IT), or operational technology (OT)
- Experience developing and refining risk-based, defense-in-depth security architectures based on established frameworks such as NIST or ISO
- Exceptional communication and advocacy skills, both verbal and written
- Ability to collaborate and communicate effectively with both business-oriented and technology-oriented personnel
- Working knowledge of one or more: Microsoft Windows, Active Directory architecture & management, Group Policies, network topology, Anti Malware, SQLServer Database Management, virtualization, Manufacturing Execution Systems
- Ability to perform field work for site assessments including visiting control rooms, rail yards, network closets, offices, and inspections of external perimeter fencing; walking for extended distances, uneven terrain, and wearing PPE
- Preferred: Experience in lab environment security risk assessment, technical design, and architecture
- Preferred: Experience with plant ICS systems (Modbus, OPC, AspenTech, OSI PI, Sample Manager, PAS Alarm Management, Honeywell, DeltaV, Yokogawa, Siemens, Schneider)
- Preferred: Ability to work with minimal supervision and mentoring skills
- Preferred: Ability to travel as required, up to 10%
- Preferred: Experience with security incident and event analytics and monitoring technology, maintenance and tuning, correlation rules, filters, lists, views, and reports
- Preferred: CISSP, CCNA, or other security recognition desirable
- Preferred: Intercultural competence
