Network Security Engineer, Industrial
INDUSTRIAL NETWORK SECURITY ENGINEER
Within the Operational Technology Security, the mission of the Industrial Network Security Engineer is to maintain a high level of expertise and performance/availability on security solutions for OCC system management and industrial remote system management. These solutions are primarily based upon Palo Alto firewalls, HP/Aruba switches, BeyondTrust/Bomgar PRA.
The Industrial Network Security Engineer will act as Level 3 for supporting incident/problems processes. The geographical focus of this role is the Americas Hub however with the ability to foster collaboration with Global Operational Technology teams across the Hub’s in order to promote convergence and improvement of standards, processes and best practices.
This position will report to the Operational Technology Director in the Americas Hub.
Responsibilities
- Advise on technology decisions & provide service implementation guidelines
- Review & provide input on proposals from an architectural perspective, including feasibility, technical viability
- Contribute to realize technical implementation relevant to support the strategy of OT and its Roadmap Solution design and implementation
- Assist in designing the overall solution
- Ensure that required capabilities for service development are supported
- Lead effort to implement the solution across the different projects
- Lead effort to test, debug, performance analyze and document components around the domain of expertise
- Write technical documentation and procedures
- Administration/management and monitoring of the platforms, conducting daily technical
- administrative work to ensure the availability, stability and security of the platforms
- Create procedures/scripts on system implementation and backups
- Monitoring logs and alerts of various sites, create automatic reports
- Specify/evaluate system/server requirements
- Adhere to ITIL change management process
- L3 Troubleshoot, root cause analysis on the major incidents/problems
- Coordinate problem resolution between teams inside and outside of the OT team
- Produces and maintains operational procedures
- Contribute to the problem management and Continuous Improvement processes around the specific platforms. This does include strong contributions with knowledge management (procedures, knowledge articles, etc, ….)
- Overtime may be required to meet project deadlines or to work on Critical Incidents
Competencies and Profile/ Experience/ Education Requirements
- Bachelor’s degree in Computer Science or IT security or other relevant area (or equivalent experience)
- CISSP, GRID, GICSP, or similar certifications are a plus
- 3 to 7 years of experience with at least 3 with network security and 2 with Palo Alto firewalls
- Knowledge on architecture/design/implementation/support of Palo Alto firewalls, HP/Aruba switches, Solarwinds, Bomgar/SIRA, DNS, SMTP, Splunk, Active Directory
- Proven experience including hands-on capacity for troubleshoot and monitor with Palo Alto firewalls, HP/Aruba switches, Bomgar/SIRA, DNS, SMTP
- Good knowledge of standard protocols (SMTP, LDAP, Kerberos, SNMP ...)
- Good knowledge of Windows / Linux architectures
- Knowledge of AWS security and/or industrial IT security would be a plus
- Familiarity with fundamental networking/distributed computing environment concepts; ability to configure file sharing (NFS/SAMBA or Windows); ability to query DNS records.
- Strong Knowledge of Network Design/Implementation.
- Ability to troubleshoot and support technical issues both remotely and on-site using standard tools and techniques (wireshark, nmap, powershell, event logs, netstat, ping, putty, …)
- Understanding authentication/authorization processes in use at the site, local and network resources and resource sharing
- Ability to design architecture and document procedures
- Good understanding of service management tools for event management, provisioning, and monitoring
- Experience with ITSM tool with a preference for Service Now
- Fluency in English is mandatory in a multicultural environment. French or Spanish is a Plus