OT Cyber Security Engineer Job Details | ENGIE
Pune (Pune Division) IT development
Job description
Job Description: OT Cyber Security Engineer, Pune India
Overview
We are seeking a highly skilled and motivated OT Cyber Security Engineer to support and manage cyber security for our solar and wind power plants located across India. The ideal candidate should be proficient in SCADA systems, PLC Devices, RTU devices, firewall & network infrastructure, and OT cyber security frameworks. This role requires adherence to Group guidelines, implementation of CEA requirements, Govt Compliance and strong collaboration with project teams to meet cyber security needs for new & existing projects.
Purpose & Function
The OT Security Engineer is responsible for safeguarding industrial control systems (ICS) and critical infrastructure from cyber threats. This role involves conducting risk assessments, implementing security measures, responding to security incidents, and ensuring compliance and Industrial standards to ensure the secure operation of OT environments.
The successful candidate is expected to be working closely in collaboration with the local sites, AMEA Hub, Group offices, Site Engineers, and other members of the organization, including vendors and contractors to deliver the OT Security scope effectively.
Key Responsibilities
•Oversee the cyber security infrastructure of 2+ Gigawatt renewable energy plants distributed throughout India.
•Administer and manage various SCADA systems including Schneider SCADA, ABB SCADA, Citect SCADA, and Aviva SCADA.
•Ensure compliance with relevant Industrial and policies & standards. Regularly review and update Operating Manual, Procedures and work instructions.
•ICS & OT Framework implementation activities across all sites.
•Conduct risk assessments and vulnerability analyses to identify and mitigate potential security threats.
•Develop Dashboards for all sites for monthly compliance monitoring.
•Assist in managing the MOC processes for changes to OT systems, including MOC creation, approvals, implementation, and close-out processes.
•Develop and maintain a System Life Cycle & Obsolescence plan for the sites.
•Provide first line of support for monitoring to detect unusual activities and potential threats.
•Lead and drive Continuous Improvements initiatives in OT Security deliveries in all Assets.
•Implement and manage Fortinet firewalls and Cisco switches to ensure robust network security.
•Manage LAN/WAN operations, including routing, switching, and network drawing management.
•Handle Windows Server management, Windows client administration, application installation, and management.
•Perform server hardening and IT infrastructure hardening.
•Follow and implement ICS (Industrial Control Systems) cyber security frameworks.
•Administer antimalware solutions, ensuring comprehensive protection across IT and OT environments.
•Conduct end-to-end IT & OT implementation, management, and administration.
•Collaborate with project teams to address cyber security requirements for new projects.
•Support and prepare for cyber security audits.
•Understand and implement ISMS (Information Security Management System) requirements for all plants and offices.
•Stay updated and implement new technologies relevant to OT cyber security.
•As a member of OT Cybersecurity team, provide support for GAP assessments on existing plant control system network.
•Co-ordinates with design and operational team to assess the security of OT systems, provide technical inputs to design team.
•Serves as the primary technical analyst for the OT Network Monitoring service offering.
•Work directly with various organizational team(s) to help analyse OT network traffic patterns.
•Promptly respond to issues related to active vulnerabilities, current risk, and migration evaluation status.
•Perform OT control system testing and validation at plant.
•Discuss with OEM vendors for support to integrate the equipment in IT network.
Qualifications :-
•Diploma or Degree in Computer Science, Electronics, IT, or a related field.
•Well versed with ISA/IEC 62443, ISO 27001, NIST framework
•Extensive experience with SCADA systems (Schneider, ABB, Citect, Aviva).
•Strong knowledge in firewall (Fortinet) and network infrastructure (Cisco).
•Proficient in LAN/WAN management, routing, switching concepts.
•Experience with Windows Server and Windows client administration.
•Expertise in server hardening and IT infrastructure hardening.
•In-depth understanding of ICS cyber security frameworks and OT protocols (such as OPC UA).
•Proven track record of managing IT & OT environments effectively.
•Familiarity with ISMS implementation and requirements.
•Strong technical skills in SCADA application administration.
•Highly self-motivated and eager to learn and implement new technologies.
•Minimum of 2-6 years of experience in Industrial Automation Control systems (IACS) including Design, Testing (FAT/SAT), Site Commissioning, Maintenance.
•Strong knowledge on Industrial control systems (PLC/DCS/SCADA/HMI & IPC). Know-how of Automation Hardware and Software.
•Experience in design and configuration of Industrial control systems application.
•Understand basics of OT Networking, OT Network components, Communication protocols (Modbus, TCP/IP, ProfNet etc.), OT Server and Storage Components.
•Knowledge of OT Server configuration, OT Network components (switches and firewall) configuration.
•Basic Field Instrumentation knowledge and site commissioning experience.
•Technical proficiency on controls systems including familiarity with control panels, networking, panel/field wiring and PLC control systems.
•Through understanding of Automation Hardware, Software, programming fundamentals, data flow from PLC, SCADA, HMI in the OT network.
Compliance and Guidelines
•Adhere to Group guidelines.
•Implement various cyber security guidelines.
•Ensure compliance with all relevant cyber security standards and regulations.
•Ability to work independently and as part of a team.
•Strong problem-solving skills and attention to detail.
•Willingness to travel to various plant locations as required.
•Proven ability to manage multiple tasks and projects simultaneously.
•Opportunities for professional development and growth.
•Contribute to the development of sustainable energy solutions.
We are looking for a dedicated and technically proficient professional to join our team and contribute to the security and efficiency of our solar and wind power plants. If you meet the above qualifications and are passionate about renewable energy and cyber security, we encourage you to apply.
Location : Viman Nagar , Pune
Business Unit: GBU Renewables
Division: T&G AMEA - India
Legal Entity: ENGIE Energy India Private Limited
Contract Type: Permanent
Job Type: Full - Time
Professional Experience: Junior (experience < 3 years)
Education Level: Bachelor's Degree