Cyber Security Specialist

Location: Krakow, Poland

Work model: Hybrid

Our ambition is to build a sustainable future through relentless innovation and global collaboration – and we want you to be part of it. You’ll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Bring your unique energy to our team of more than 21,000 people worldwide, and discover a rewarding, fulfilling, and varied career that you can take in anywhere you want to go.

Reporting to the OT/IACS Assurance & Engineering Sr. Manager, the Cybersecurity Specialist is responsible for providing cybersecurity support and oversight for product development groups and industrial control system environments. This includes defining, managing, and enforcing IACS security controls, processes and procedures. Relies heavily on experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the IACS Cybersecurity team, the information and digital services team, working closely with sites, services, technical teams and product groups to ensure that security requirements and support are provided. In this role, the IACS Security Specialist will be a member of the global Information Security team, within the CISO’s department, serving as regional IACS Security representative for Norway and Poland while providing Global support for projects and initiatives from the Security team.

Responsibilities

• Provide secure design, development, and architecture requirements for Industrial Control Systems (ICS) environments and information and digital systems as they relate to ICS and automation.
• Provide cybersecurity awareness and training within product development and ICS environments.
• Provide support to write, review, and maintain documents, policies, and standards governing the cybersecurity requirements for the ICS environment.
• Provide secure architecture requirements for lab and development networks.
• Perform security reviews and assessments of systems, networks, and processes/procedures in ICS environments.
• Assist with testing, selection and implementation of security technologies in ICS environments.
• Provide support for projects and initiatives that enables sites to accomplish project goals in a secure manner.
• Provide support for management and remediation of vulnerabilities identified in ICS environments.
• Acts as subject matter expert in Industrial Automation and Control Systems security.
• Support on the development of cybersecurity technology implementation strategies for ICS environments with clear understanding of the differences between IT and OT environments (e.g. Anti-virus on HMIs, application whitelisting, security policies for firewalls in ICS environments, etc.).
• Support the execution of risk based methodologies for cybersecurity assessments of ICS systems, including remote sites, onsite, third party, and on vessels.
• Support on the creation of technical design documentation and to write technical reports for both technical and management consumption and understanding.
• Follows the established metrics and key performance indicators to monitor the overall health and effectiveness of the ISC cybersecurity program.
• Stays informed about the latest cyber threats to the ICS environment including threats towards the organization.
• Supports on the development of strategies and plans to mitigate emerging cyber threats.
  
  

Required Skills

• Bachelor’s degree or equivalent
• Strong technical ICS experience (5 years +): ability to review configurations of ICS (e.g. HMIs, engineering software, PLCs, etc.), identify best practices for backup and recovery of ICS, and understand industrial protocols.
• Good general technical knowledge: Applications technologies, networks, protocols, databases, operating systems (Windows/Linux)
• Understanding of Industrial Networks
• Experience using ICS software including:
• Engineering Software
• Version Management Software
• HMI Software
• OPC Software
• Working knowledge of networking concepts, ability to review network designs, and perform security assessments of network devices (e.g. switches, routers, firewalls).
• Good writing/presentation skills
• Fluent in English
• Cybersecurity certifications (e.g.: CISSP)
• ICS Security Certifications (SANS GICSP, ISA/IEC 62443 Risk Assessment Specialist)
• Experience implementing security controls, hardening, and technologies in automation systems and networks.
• Experience implementing vulnerability and patch management in ICS environments.
• Working knowledge of IACS Security standards.
• Willingness to travel to other TechnipFMC sites (5%).
  

Being a global leader in the energy industry requires an inclusive and diverse environment. We promote equal opportunities and inclusion by ensuring equal opportunities to all ages, races, ethnicities, religions, gender expressions, disabilities, or all other pluralities. We celebrate who you are and what you bring. Every voice matter and we encourage you to add to our culture.

Cognizant respects the rights and dignity of those it works with and promotes adherence to internationally recognized human rights principles for those in its value chain.

We can't wait for you to join our team!

For more information about us, visit Cognizant Poland.

If you are looking for another opportunity and are interested in the company, do not hesitate to apply online!

Stay up to date with our recent events – follow us on LinkedIn or Facebook.