Senior Cyber Security Engineer

Senior Cyber Security Engineer – 12 months Contract

Hybrid 2 days Tuesday & Wednesday other 3 remote
OUTSIDE OF IR35
In order of preference for Location – Aberdeen, Staines, Glasgow or Reading
Applicants must be able to pass HMG Baseline Personnel Security Standard (BPSS) check.

The Senior Cyber Engineer will support the implementation of projects in line with company objectives including continuous improvement of margin, customer satisfaction, schedule, working capital & safety performance.  As a Senior Cyber Engineer, you will assist in the provision of cyber security, networking, secure architectures, solutions, vulnerability & risk assessments, technologies & procedures to support clients assignments / project teams & clients.  Previous project experience who has the capability to discover vulnerabilities & risks in networks, software systems & data centers through ongoing vulnerability scans, monitoring network data, & ensuring hardware & software applications are updated.
My clients Systems Integration (SI) team, work with a variety of high-profile clients across the energy sector. Delivering bespoke essential automation & control solutions that enable a safer & more efficient operation.  Within SI, we are architecting our clients' digital ecosystems to be inherently safe, cyber-secure & operable. Within their teams they integrate client source systems across their IT, Operational Technology (OT) environments, securely pushing OT data into IT systems as a foundation for transformation.  They design & integrate operational technology to achieve business, production, & operational goals.      

The key objectives for this role are: 

• Assess the robustness of cybersecurity architectures, technologies, & procedures implemented within customer facilities
• Design solutions that meet client requirements & implement the appropriate measures to mitigate security risks (e.g., Antivirus software, patch management programs, insider threat protection, incident response plans, & regulation compliance)
• Conduct vulnerability assessments & audits on client systems & network devices considering the sensitivity of Operational Technology testing
• Provide expertise in Network Design, implementation, & testing for networks to support Integrated Automation & Control Systems Solutions
• Identify & define network requirements to support automation & controls solutions for our clients
• Development of Detailed Network Architecture & Network Dataflow Diagrams
• Produce Network Schedules (IP addresses, Data communication, server &VM, Switch & firewall), Produce Testing procedures (FAT)
• Produce Material requisition & contribute to Technical Bid evaluation
• Review Vendor Drawing & consolidate comments generated by other disciplines
• Undertakes Cyber Security Risk Assessments providing advice & guidance for implementation of Cyber Security Risk Assessment findings mitigating actions
• Support in evaluating client’s security posture, identify vulnerabilities, weaknesses, & areas for improvement
• Stay up to date with the latest security trends, threats, & best practices
• Apply integration concepts to a wide variety of systems & across multiple vendor platforms.
• Engineer technical aspects of automation project network design & / or implementation for assigned activities
• Prepare engineering studies & network & cyber design documentation
• Resolve specialty related engineering issues by applying accepted principles, codes, & standards

    Senior Cyber Engineer Skills & Qualifications 
Expected: 

• Minimum BSc Degree or equivalent demonstratable experience
• Certifications such as CCNA, CCNP, CWNP, ISA/IEC 62443 Cybersecurity Certificates, or GICSP are highly desirable
• Significant experience & competency in Control System Network Design Engineering
• Good understanding of IEC62443 Industrial Cyber Security
• Good understanding of IEC27001/2 Information Security Management
• Good general knowledge of each Automation & Control engineering discipline
• Knowledge of industrial communication protocols (e.g., Modbus, DNP3, OPC) & their security implications
• Detailed experience with multiple system implementation projects & / or control system platforms
• Experience in Brownfield upgrades / replacement automation & control projects
• Must have thorough knowledge of engineering practices, methodologies & economic principles, calculation methods, design details, international codes & standards, procedures, & specifications
• Knowledge of modern automation & control applications, tools, methodologies, or equivalent training / experience
• Understanding of the interplay between physical security & cybersecurity in OT environments
• Familiarity with safety standards & regulations relevant to OT environments
• Good working knowledge of current industry specific technology & the application of current engineering software / tools & trends
• Inquisitive, well organized & have a keen eye for detail

Desirable:  

• Experience with Networks containing Rockwell, Honeywell & Schneider PLC / SCADA systems
• Familiarity with telecom protocols, satellite communication & radio-link technologies 
• Experience of OT Intrusion Detection Systems

With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.