Principal Network & Cyber Security Engineer

Principle Network & Cyber Security Engineer – 12 Months Contract

Hybrid 2 days Tuesday & Wednesday other 3 remote

OUTSIDE OF IR35

In order of preference for Location – Aberdeen, Staines, Glasgow or Reading

Applicants must be able to pass HMG Baseline Personnel Security Standard (BPSS) check.

Principal Network & Cyber Security Engineer experienced to have experience in Automation & Control Network design & implementation to join my clients Systems Integration team.

As a Principal Network & Cyber Security Engineer, you will assist in the provision of cyber security, networking, secure architectures, solutions, vulnerability & risk assessments, technologies & procedures to support my clients assignments / project teams & clients. To discover vulnerabilities & risks in networks, software systems & data centers through ongoing vulnerability scans, monitoring network data, & ensuring hardware & software applications are updated.

Our Systems Integration (SI) team, work with a variety of high-profile clients across the energy sector. Delivering bespoke essential automation & control solutions that enable a safer & more efficient operation.  
 
Within SI, my client is architecting their clients' digital ecosystems to be inherently safe, cyber-secure & operable. Within their teams they will integrate client source systems across their IT, Operational Technology (OT) environments, securely pushing OT data into IT systems as a foundation for transformation. 
 
They design & integrate operational technology to achieve business, production, & operational goals.   

Principal Network & Cyber Security Engineer responsibilities  

• Provides expertise in Network Design, implementation, & testing for networks to support Integrated Automation & Control Systems Solutions
• Responsible for identifying / defining the required network to support the Automation & Controls requirement / solutions for the client
• Development of Detailed Network Architecture 
• Development of Network Dataflow Diagram 
• Produce Cybersecurity requirement implementation specifications
• Produce Network Schedules (IP addresses, Data communication, server &VM, Switch & firewall)
• Produce Testing procedures (FAT)
• Development Migration Strategy 
• Selection of suitable network component. 
• Inter-discipline review of deliverables from other departments. 
• Produce Material requisition & contribute to Technical Bid evaluation
• Review Vendor Drawing & consolidate comments generated by other disciplines
• Support the Lead Engineer in accomplishing project objectives
• Apply integration concepts to a wide variety of systems & across multiple vendor platforms
• Engineer technical aspects of automation project network design & / or implementation for assigned activities
• Undertakes Cyber Security Risk Assessments providing advice & guidance for implementation of Cyber Security Risk Assessment findings mitigating actions
• Support in evaluating client’s security posture, identify vulnerabilities, weaknesses, & areas for improvement
• Stay up to date with the latest security trends, threats, & best practices
• Provide support to standardising project execution / workflow

   
Skills & Qualifications 

Expected: 

• Minimum BSc Degree or equivalent demonstratable experience
• Significant experience & competency in Control System Network Design Engineering
• Good understanding of IEC62443 Industrial Cyber Security
• Good understanding of IEC 27001 / 2 Information Security Management
• Good general knowledge of each Automation & Control engineering discipline
• Experienced in writing Network specifications
• Detailed experience with multiple system implementation project & / or control system platforms
• Experience in Brownfield upgrades / replacement automation & control projects
• Experience of Networks containing Rockwell & Schneider PLC / SCADA systems is advantageous
• Must have thorough knowledge of engineering practices, methodologies & economic principles, calculation methods, design details, international codes & standards, procedures, & specifications
• Knowledge of modern automation & control applications, tools, methodologies, or equal training / experience
• Experience of OT Intrusion Detection Systems is advantageous
• Good working knowledge of current industry specific technology & the application of current engineering software / tools & trends
• Inquisitive, well organized & have a keen eye for detail
• Hands on experience of using cybersecurity tools
• Good knowledge & understanding of cybersecurity standards, data protection frameworks, & maintaining compliance
• Multi sector knowledge & global project experience in relevant areas
• Identifying, defining, & solving client problems

Desirable: 

• Good knowledge of process automation, dynamic/real-time systems, & relevant technologies
• Good knowledge & experience in implementing security practices & controls related to architecture, governance, risk, & compliance management
• Good knowledge & experience with vulnerability management, risk management, compliance, & penetration testing tools

Candidates must be eligible to work in the UK

With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.