Saudi Aramco
This job is closed

ICS Cybersecurity Specialist

Job Description and Requirements
  • Create, lead, conduct, and track cybersecurity risk assessments of ICS's, to include all cyber assets, such as distributed control systems (DCS's), human-machine interfaces (HMIs), programmable logic controllers (PLCs), remote terminal units (RTUs), and supervisory control and data acquisition (SCADA) systems.
  • Understand and explain risks and exposure to ICS environments.
  • Conduct risk and threat research, keeping current with the evolving ICS threat landscape. U
  • Understand and incorporates ICS risk assessments reports into ICS risk registers.
  • Work with SMEs to gauge viability and sufficiency for proposed mitigations and remediation, ensuring risks will be reduced to accepted levels prior to implementation.
  • Research and contribute to industry best practices. Develop, deploy, and train personnel on internal ICS security standards based on NIST 800-82, ISA99, and other industry-specific security standards.
  • Perform security practices assessment to assess the ability of ICS/SCADA suppliers to meet ICS/SCADA security requirements for protecting Saudi Aramco Plants ICS/SCADA and manage identified risks.
  • Monitor ICS/SCADA supplier adherence to Saudi Aramco ICS/SCADA security requirements.
  • Perform ICS/SCADA product quality security assurance assessments and reviews against ICS/SCADA vendors to ensure security requirements are addressed.
  • Record flaws or security weaknesses identified during the security testing and security assurance reviews to be resolved.