Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Senior Cybersecurity Engineer – ICS / SCADA
Company Cytiva
Location Sweden or MA, USA
Preferred GIAC Certifications GICSP
Travel 30%
Salary Depends O Experience
URL https://jobs.danaher.com/global/en/job/R1145661/Senior-Cybersecurity-Engineer-ICS-SCADA
Contact Name MShrewsbury
Contact Email mshrewsbury/at/sans.org
Expires 2021-07-20

Job Description

The Architect, ICS Product Privacy and Security is responsible for establishing, defining, and managing the global product privacy and security initiatives across the Cytiva product portfolio. The position will work directly with product development teams, product management, and quality to ensure that product privacy and security policies, procedures and best practices are fully integrated within Cytiva products.


Responsibilities
Serve as the subject matter expert pertaining to product privacy and security for ICS based products.
Develop product security and privacy testing and assessment practices.
Serve as expert in the areas of architecture review, incident response, security forensics, and development standards / guidelines for ICS based products.
Assess and help develop privacy & security solutions into a competitive advantage for Cytiva.
Assist in policy writing, training and compliance reviews.
Work with product development teams on privacy and security planning and provide assistance through the entire product lifecycle to promote privacy and security best practices.
Perform privacy and security assessments on Cytiva products. Assessments will include: reviewing threat models, reviewing privacy and security risk assessments, interpreting penetration testing results, static and dynamic code assessments and product privacy and security documentation.
Provide guidance in reporting overall product privacy and security posture, both technically and in business terms.
Participate in internal and external audits.
Point of contact for pre-sales queries, security questionnaires and contract reviews.
Assess newly identified security vulnerabilities and their impact on our product portfolio.
Work with 3rd party suppliers to understand how to best implement security within their systems during the integration into Cytiva product.
Education
Bachelor’s degree in computer science or related field; equivalent experience may be acceptable.
Industry recognized security certifications such as CISSP or HCISPP required
CSM, CISA, GIAC, CEH, or other technical security certification desired
Qualifications and Experience
Solid experience in IT security or cybersecurity role utilizing the complete security architecture.
Excellent knowledge of Information Security standards, frameworks and best practices for product security; especially IEC 62443 and NIST 800-53.
Experience working with customers and converting customer issues into solutions.
Understanding product life-cycle as it pertains to ICS.
Understanding of equipment used in academia, lab or GxP production environments
Exhibit effective management of remediation efforts to resolve security findings
Threat Modeling, Penetration Testing and/or Product Security Vulnerability Management
Ability to perform and train others on common threat modeling frameworks and techniques
Experience with industrial networks, network design, OS hardening.
Experience securing SCADA, PLC, DCS and embedded devices.
Experience in the Life Sciences’ environments is preferred but not required.
Who we are

When you join us, you’ll also be joining Danaher’s global organization, where 68,000 people wake up every day determined to help our customers win. As an associate, you’ll try new things, work hard, and advance your skills with guidance from dedicated leaders, all with the support of powerful Danaher Business System tools and the stability of a tested organization.

Danaher is committed to a diverse and inclusive culture where everyone feels they belong and all voices are heard. We believe in our associates and the unique perspectives they bring to every challenge, which is why we’ll empower you to push the boundaries of what’s possible.

If you’ve ever wondered what’s within you, there’s no better time to find out.

Danaher Corporation and all Danaher Companies are equal opportunity employers that evaluate qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. The “EEO is the Law” poster is available here.

Danaher Corporation and all Danaher Companies are equal opportunity employers that evaluate qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. The “EEO is the Law” poster is available here.