EY
Cyber SDC - OT Network Security Architecture & Governance - Senior - Consulting
EY, Baltimore, Maryland, United States, 21276
Overview
Cyber SDC - OT Network Security Architecture & Governance - Senior - Consulting - Location Open Location: Anywhere in Country Responsibilities
In the role of OT Senior Architecture & Governance, you will support the OT manager by providing architecture oversight and approvals for OT systems, VLANs, and controls, ensuring that all designs and implementations meet security, compliance, and operational requirements. Additionally, you will assist in overall operations, reporting focusing on processes, milestones, and deliverables. The primary purpose of this role is to operationalize existing processes and develop standard work supporting best practices around OT Cybersecurity. You will help establish governance frameworks and best practices that guide the development and deployment of OT solutions in adherence to regulations and audit efforts. You will collaborate with cross-functional teams to assess architectural designs, provide recommendations, and facilitate decision-making processes that enhance the overall security and efficiency of OT environments. Technical Skills
Experience and knowledge on Operational Technology (OT) environments and governance Strong familiarity, background, and/or understanding of manufacturing, shopfloor, ICS, building management, or other OT environments and their safety, quality, and production considerations Experience with security architecture design and assessment of technologies such as SaaS, PaaS, IaaS, AI/ML, ZTA etc. Familiarity with cybersecurity frameworks, including NERC CIP, NIS, CIS, NIST CSF, ISO 27001, ISA/IEC 62443 Security controls, such as firewalls, IDS/IPS, encryption, and access management Strong familiarity with networking concepts: TCP/IP networking (network segmentation, VLANs, network tapping/RSPAN, L2/L3 protocols, encryption, VPN, etc.) Familiarity with equipment for internal and external access (H/W servers, switches, routers, firewalls, load balancers, HSM, etc.) from various manufacturers (HPE, Lenovo, Cisco, Fortinet, Checkpoint) Knowledge of Identity and Access Management concepts (e.g., PAM, AD, PKI), Zero Trust, infrastructure security Familiarity with endpoint protection including application whitelisting Technical background across multiple domain areas (database, cloud, application management, etc.) Risk-based mindset ServiceNow and AuditBoard usage experience Soft Skills
Ability to analyze and resolve problems; demonstrated ability to lead programs/projects Ability to document, plan, market, and execute programs; established project management skills Ability to work with Product Owners, explain technical architecture requirements, and answer technical architecture questions Ability to lead calls with Product Owners and client stakeholders and clearly articulate review reasoning and rationale Multitasking between multiple projects and closing in a timely manner based on priorities What We Look For
We are looking for people who strive to lead themselves, their teams, and their communities, and who can foster effective teamwork to drive results. We’re interested in authentic communicators with the ability to collaborate with EY colleagues across various teams who want to develop personally and professionally in a dynamic organization. What We Offer You
EY will develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment and support your talents in a diverse and inclusive culture of globally connected teams. We offer a comprehensive compensation and benefits package, hybrid work expectations, and a flexible vacation policy. Details provided during the application process. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. EY is an equal employment opportunity employer. EY focuses on high ethical standards and integrity among its employees. Additional Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Professional Services
#J-18808-Ljbffr
Cyber SDC - OT Network Security Architecture & Governance - Senior - Consulting - Location Open Location: Anywhere in Country Responsibilities
In the role of OT Senior Architecture & Governance, you will support the OT manager by providing architecture oversight and approvals for OT systems, VLANs, and controls, ensuring that all designs and implementations meet security, compliance, and operational requirements. Additionally, you will assist in overall operations, reporting focusing on processes, milestones, and deliverables. The primary purpose of this role is to operationalize existing processes and develop standard work supporting best practices around OT Cybersecurity. You will help establish governance frameworks and best practices that guide the development and deployment of OT solutions in adherence to regulations and audit efforts. You will collaborate with cross-functional teams to assess architectural designs, provide recommendations, and facilitate decision-making processes that enhance the overall security and efficiency of OT environments. Technical Skills
Experience and knowledge on Operational Technology (OT) environments and governance Strong familiarity, background, and/or understanding of manufacturing, shopfloor, ICS, building management, or other OT environments and their safety, quality, and production considerations Experience with security architecture design and assessment of technologies such as SaaS, PaaS, IaaS, AI/ML, ZTA etc. Familiarity with cybersecurity frameworks, including NERC CIP, NIS, CIS, NIST CSF, ISO 27001, ISA/IEC 62443 Security controls, such as firewalls, IDS/IPS, encryption, and access management Strong familiarity with networking concepts: TCP/IP networking (network segmentation, VLANs, network tapping/RSPAN, L2/L3 protocols, encryption, VPN, etc.) Familiarity with equipment for internal and external access (H/W servers, switches, routers, firewalls, load balancers, HSM, etc.) from various manufacturers (HPE, Lenovo, Cisco, Fortinet, Checkpoint) Knowledge of Identity and Access Management concepts (e.g., PAM, AD, PKI), Zero Trust, infrastructure security Familiarity with endpoint protection including application whitelisting Technical background across multiple domain areas (database, cloud, application management, etc.) Risk-based mindset ServiceNow and AuditBoard usage experience Soft Skills
Ability to analyze and resolve problems; demonstrated ability to lead programs/projects Ability to document, plan, market, and execute programs; established project management skills Ability to work with Product Owners, explain technical architecture requirements, and answer technical architecture questions Ability to lead calls with Product Owners and client stakeholders and clearly articulate review reasoning and rationale Multitasking between multiple projects and closing in a timely manner based on priorities What We Look For
We are looking for people who strive to lead themselves, their teams, and their communities, and who can foster effective teamwork to drive results. We’re interested in authentic communicators with the ability to collaborate with EY colleagues across various teams who want to develop personally and professionally in a dynamic organization. What We Offer You
EY will develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment and support your talents in a diverse and inclusive culture of globally connected teams. We offer a comprehensive compensation and benefits package, hybrid work expectations, and a flexible vacation policy. Details provided during the application process. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. EY is an equal employment opportunity employer. EY focuses on high ethical standards and integrity among its employees. Additional Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Professional Services
#J-18808-Ljbffr