OT Senior Security Engineer

Help AG is looking for a talented and experienced Resident Consultant (OT Cybersecurity Engineer) who will be responsible for providing technical support, administration, and maintenance necessary for OT Cybersecurity Services for the Company's Operational Technology (OT) and OT-IT integration. This role will play a key part in operating and maintaining cybersecurity infrastructure and OT Cybersecurity controls based on the approved OT Cybersecurity Policies, Standards, process, procedures and guidelines. The objective is to ensure the availability, integrity, and secure operations of the company's Operation Technology/Industrial Automation & Control Systems and mission critical systems from emerging cybersecurity threats by focusing into three job specific accountabilities:o Operate and Maintain (OM)o Protect and Defend (PR)o Securely Provision (SP)ResponsibilitiesProvide the support, administration, and maintenance necessary to ensure effective and efficient of OT/ICS Cybersecurity systems performance and availability.Perform asset management/inventory of OT cybersecurity resources and it is supported infrastructure resources.Perform system administration on specialized cyber defence tools and supported infrastructure for OT/ICS environment (e.g., antivirus, application whitelisting, firewalls, IPS/IDS, Data Diodes, secure file transfer, passive security monitoring) to include installation, configuration, maintenance, backup, and restoration as per operational procedures.Administer accounts, network rights, and access to OT/ICS Cybersecurity systems and equipment.Adhere to company OT cybersecurity metrics and OT Cybersecurity KPIs.Maintain security baseline configuration for OT/ICS Cybersecurity Systems and supported infrastructure according to organizational policies and operational standards.Assist and support OT/ICS systems custodians to apply the applicable security baseline configuration on OT/ICS systems.Patch OT/ICS Cybersecurity systems and infrastructure vulnerabilities and update security contents to ensure reliability and safeguarded against known threats.Continuously monitor OT/ICS Cybersecurity systems and supported infrastructure availability, functionality, integrity, efficiency, capacity, and performance.Conduct periodic system maintenance including health check, configuration review, access and permission review, functionality, and effectiveness testing on OT/ICS Cybersecurity systems and supported infrastructure as per the defined standard.Troubleshoot, diagnose, and resolve reported OT/ICS Cybersecurity services incidents, problems, and events as per the SLA.Participate in diagnosing network connectivity problem within OT/ICS environments.Maintain documentation for all OT/ICS Cybersecurity systems security implementation, standard operating procedures, and maintenance activities and update as necessary.Coordinate all actions with OT systems custodians to ensure the sustenance of OT Cybersecurity solutions.Plan and recommend modifications or adjustments based on exercise results or system environment.Identify, analyze, and mitigate cybersecurity threats to Operation Technology (OT) systems and/or networks.Uses defensive measures and information collected from defence tools (e.g., IDS alerts, SIEM alerts, firewalls, network traffic logs) to identify, analyse, and report events that occur or might occur within the network and participate in preparing a standard remedial plan of actions to protect OT systems, and networks from threats.Implement system security measures to resolve vulnerabilities, mitigate risks and recommend security changes in accordance with established procedures and standards to ensure production continuity, resilience, and safety of OT/ICS Systems.Examine network topologies to understand data flows through OT/ICS network and interfaces between OT/ICS networks and systems.Work with stakeholders to resolve computer security incidents and vulnerability compliance within OT/ICS networks.Coordinate with OT systems custodians to assure collecting of information security data sources from OT systems and networks for Cybersecurity monitoring.Monitor external data sources (e.g., cyber defence vendor sites, Computer Emergency Response Teams, Security Focus. Etc) to maintain currency of OT/ICS cyber defence threat condition and determine which security issues may have an impact on the OT/ICS systems.Apply signatures/IOCs on cyber defence network tools in response to new or observed threats from advisories within the applicable OT/ICS network environment or enclave.Conceptualizes, designs, and procures Operation technology (OT) systems and networks, with responsibility for Cybersecurity aspects.Support OT/ICS projects life cycle from Cybersecurity perspective by defining OT Cybersecurity requirements part of Design General Specification (DGS), Front End Engineering Design (FEED), Functional Design Specification (FDS), Detailed Design Specification (DDS) during EPC phase, Cyber Sec