4 Ics Protocols Jobs

L3 Support for Security Incident Management to SOC Analysts. Client and 3rd party vendor interaction. Consulting role for OT Use Case development and finetuning. Document preparation like Runbook including Use case-based response plans. Understanding of impact of security incident on OT network. Develop efficient framework for detection, response and remediate. Professional & Technical Skills: Subject Matter Expert in OT Security. Should've knowledge of manufacturing ICS/IIoT/OT, MES/PLM, SCADA/DCS, HMI, PAC/PLC across multiple ICS OEMs Honeywell, Yokogawa, ABB, Schneider, Rockwell etc. Understanding of Network Architecture and Proprietary/Open protocols. Understanding of end to end OT Security Incident Management, including correlation of logs from multiple security tools sources of OT like AV, Firewall, EDR etc. OT SOC L3 Role for at least P1/P2 Incidents. Should've drafted response plans for custom / out of box use cases. Consulting exposure to manage mitigation activities Goof communication skills Additional Information: Bachelor of Engineering in Electronics/Instrumentation/Computer Science/Information Technology. Deployment / Implementation certification on Nozomi / Claroty / Forescout / Dragos / equivalent tools.

L3 Support for Security Incident Management to SOC Analysts. Client and 3rd party vendor interaction. Consulting role for OT Use Case development and finetuning. Document preparation like Runbook including Use case-based response plans. Understanding of impact of security incident on OT network. Develop efficient framework for detection, response and remediate. Professional & Technical Skills: Subject Matter Expert in OT Security. Should've knowledge of manufacturing ICS/IIoT/OT, MES/PLM, SCADA/DCS, HMI, PAC/PLC across multiple ICS OEMs Honeywell, Yokogawa, ABB, Schneider, Rockwell etc. Understanding of Network Architecture and Proprietary/Open protocols. Understanding of end to end OT Security Incident Management, including correlation of logs from multiple security tools sources of OT like AV, Firewall, EDR etc. OT SOC L3 Role for at least P1/P2 Incidents. Should've drafted response plans for custom / out of box use cases. Consulting exposure to manage mitigation activities Goof communication skills Additional Information: Bachelor of Engineering in Electronics/Instrumentation/Computer Science/Information Technology. Deployment / Implementation certification on Nozomi / Claroty / Forescout / Dragos / equivalent tools.

You are a hands-on and motivated OT Security Analyst with approximately 3 years of experience in securing Operational Technology (OT) and Industrial Control Systems (ICS) environments. In this role, you will be instrumental in supporting the implementation and enhancement of the manufacturing security program, contributing to the development of OT security strategies, assisting in the deployment of security controls, and collaborating with various teams to bolster the OT security posture. Your responsibilities will include implementing and supporting security controls for a range of OT assets such as PLCs, HMIs, SCADA systems, and RTUs. You will conduct risk assessments, define segmentation strategies, and assist in establishing OT security baselines. Utilizing OT security tools like Claroty, Nozomi, Armis, or Tenable.ot, you will monitor and safeguard industrial networks. Collaboration with plant operations, engineering teams, and OT vendors will be crucial for ensuring secure implementation and ongoing support. Additionally, you will contribute to SIEM log integration, alert triage, and incident investigations pertaining to OT systems. Furthermore, you will actively participate in tasks related to network segmentation, firewall configuration, and passive traffic monitoring within OT environments. Your role will involve contributing to the creation of documentation, playbooks, and process enhancements for OT security operations. To excel in this position, you should possess at least 3 years of experience in OT/ICS cybersecurity or related roles. A strong understanding of ICS protocols such as Modbus, DNP3, and OPC is essential. Experience working with industrial devices and systems like PLCs, SCADA, RTUs, and robotic automation will be beneficial. Familiarity with OT-specific risks and the unique challenges of industrial environments is required. Proficiency in OT security tools like Claroty, Nozomi, Armis, and Tenable.ot is preferred. You should also have a working knowledge of SIEM tools, firewalls, and network segmentation within OT setups. Effective communication skills and the ability to collaborate with multidisciplinary teams are essential for success in this role. Preferred qualifications include certifications like GICSP, GRID, IEC 62443, or other OT security credentials. Familiarity with cybersecurity frameworks such as NIST CSF, IEC 62443, or related standards is advantageous. Experience in the manufacturing or industrial sectors is considered a plus.,

As a seasoned Cybersecurity professional in a leadership role, you will be responsible for overseeing various aspects of Digital Forensics and Incident Response (DFIR) across Operational Technology/Industrial Control Systems (OT/ICS) and Information Technology (IT) environments. Your primary duties will involve conducting forensic investigations and root cause analyses of cyber incidents, coordinating incident response activities, and ensuring compliance with breach containment and recovery protocols. You will play a crucial role in the development and maintenance of playbooks, Standard Operating Procedures (SOPs), and readiness frameworks for both proactive and reactive DFIR measures. Additionally, you will be tasked with establishing and managing forensic labs and tooling infrastructure to support memory, disk, network, and cloud forensics. Collaborating with client Chief Information Security Officer (CISO) teams and legal/compliance counterparts during forensic escalations will also be a key aspect of your role. As a mentor and leader, you will guide junior investigators, ensuring their skill development through hands-on training. Your expertise will drive continuous improvement initiatives in forensic collection, chain of custody, and evidence handling procedures. Furthermore, you will be expected to provide support for expert testimony, litigation response, and legal documentation as needed. Your role will require close collaboration with red, blue, and purple teams to develop an integrated threat mitigation strategy. You will also conduct forensic workshops, table-top exercises, and readiness assessments for clients. Building relationships with global Original Equipment Manufacturers (OEMs) and DFIR product partners to enhance capabilities will be essential for the success of the organization. In terms of required skills and tools, you should be proficient in utilizing tools such as EnCase, FTK, Magnet AXIOM, Autopsy, Volatility, and Wireshark. Experience with Endpoint Detection and Response (EDR)/Extended Detection and Response (XDR) platforms like CrowdStrike, SentinelOne, and Carbon Black is crucial. Familiarity with OT forensic challenges, including air-gapped ICS/SCADA systems, and a deep understanding of ICS protocols such as Modbus, DNP3, and OPC-UA are also expected. Your personality traits and leadership abilities will be put to the test in this role. Strong analytical skills, attention to detail, and strategic thinking will be essential, especially in high-pressure situations. Your proven ability to lead in crisis scenarios, communicate effectively with stakeholders, and manage teams will be highly valued. Collaborating seamlessly with cross-functional teams, including Security Operations Center (SOC), engineering, legal, and client teams, will be instrumental in achieving the organization's cybersecurity goals. To qualify for this position, you should hold a Bachelor's or Master's degree in Cybersecurity, Computer Science, or related fields. Preferred certifications include GCFA, GCFE, CHFI, CISSP, or their equivalents. A minimum of 14 years of cybersecurity experience, with at least 5 years in DFIR leadership roles, and prior experience managing DFIR services for critical infrastructure or consulting environments are prerequisites for this role.,