IACS Specialist – Contract
As a result of Somniac’s continued growth we are excited to offer this contract opportunity.
We are seeking a highly skilled IACS (Industrial Automation and Control Systems) specialist to join our team. The IACS specialist will be responsible for the design, implementation, and maintenance of industrial control systems, including programmable logic controllers (PLCs), supervisory control and data acquisition (SCADA) systems, and other related technologies
Ultimately the role will lead risk reduction and security hardening as it relates to our client’s processes to ensure their systems are resilient to cyber threat.
Within the scope of delivery you will:
- Define scope of IACS systems
- Define the roles and responsibilities for the responsible persons and competency requirements for these roles, to include:
- 3rd Parties
- Employees with physical or logical access, management or oversight responsibilities, service ownership and board level IACS ownership
- Perform gap analysis for roles and competencies
- Create an action plan for closing of any competency gaps
- Develop and implement an IACS CSMS (Cyber Security Management System) to include
- Risk Management
- IACS component asset register
- Relevant policies, processes, procedures and work instructions
- g. Incident Response, Patching, Access Control, Secure destruction/disposal, physical access, remote access, software/firmware updates etc
- Provide strategic direction for CSMS
- Managing security risk
- Protection against cyber attack
- Detecting cyber security events
- Minimising the impact of cyber security Incidents
- Identify cyber gaps
- Define and implement countermeasures
About you
- Experience working with Operational Technology, Industrial Controls Systems, SCADA, PLCs, etc
- Hands on experience in IT/OT Security, Risk Management, Network Engineering, Incident Management
- Experienced in a Leadership Role working experience in Engineering or IT Security field
- Working understanding in a wide range of information security technologies including network hardening, firewall optimisation, data backup and restoration, end point security
- Educated to University degree level (or equivalent) in STEM subject
- Possession of professional certifications and membership in professional associations is highly desirable (e.g., CISSP, GICSP, CISM, CIISec, IET, BCS ISO27000 certification etc)