Sr. Cybersecurity Engineer

Fluence - Houston, TX

posted 4 months ago

Full-time - Mid Level
Houston, TX
Utilities

About the position

The Sr Cybersecurity Engineer will perform as a member of a dynamic product team ensuring the security of Fluence products. This role requires an analytical mind and a detailed understanding of secure design, defense in depth strategies, operations, and security best practices. The Sr Cybersecurity Engineer is expected to have meticulous attention to detail, outstanding problem-solving and documentation skills, and the ability to work comfortably under pressure while delivering on tight deadlines. In this position, the Sr Cybersecurity Engineer will participate in an agile team and track day-to-day activities in Jira. Responsibilities include evaluating and implementing new and state-of-the-art technology to address challenging customer problems, participating in network and security design reviews, and ensuring network security. The engineer will communicate security vulnerabilities of all severities to affected stakeholders within the product organization. Additionally, the role involves planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks. Troubleshooting and debugging production environments while providing support to a global organization is a key aspect of this role. The engineer will also identify opportunities to improve workflow and create/maintain supporting documentation. The ideal candidate will have a minimum of 5+ years of experience in cybersecurity roles and a preferred background with a B.S. degree in Information Technology, Information Security, Cybersecurity, Networking, Computer Science, or a related technical field. A solid understanding of OSI layer and TCP/IP models, defense in depth strategies, and applying secure design principles in securing applications, networks, servers, and cloud environments is essential. The candidate should be able to work independently with little day-to-day guidance to achieve targets and goals.

Responsibilities

  • Participate in an agile team and track day-to-day activities in Jira.
  • Evaluate and implement new and state-of-the-art technology to address challenging customer problems.
  • Participate in network and security design reviews.
  • Ensure network security and communicate security vulnerabilities of all severities to affected stakeholders within the product organization.
  • Plan, implement, manage, monitor, and upgrade security measures for the protection of the organization's data, systems, and networks.
  • Troubleshoot and debug production environments and provide support to a global organization.
  • Identify opportunities to improve workflow and create/maintain supporting documentation.
  • Collaborate with cross-functional teams to integrate security measures and best practices into the Software Development Life Cycle (SDLC).
  • Conduct comprehensive security assessments and audits, vulnerability assessments, testing, and code reviews for software components utilized in Industrial Control Systems.
  • Identify potential vulnerabilities and design flaws and provide recommendations for remediation and mitigation.
  • Assist software development teams in adopting secure coding practices, including adherence to coding standards and best practices.
  • Perform threat modeling exercises to identify potential attack vectors and security weaknesses in software components.
  • Collaborate with the Incident Response team to investigate and respond to any security incidents related to ICS software components.
  • Conduct training sessions to raise awareness among OT and development teams about potential cyber threats and best practices in ICS security.
  • Stay updated on relevant industry regulations and standards (e.g., NERC CIP, IEC 62443) to ensure compliance and alignment with best practices.
  • Assist in conducting risk assessments of software components, development, production, and ICS environments, identifying and prioritizing potential security risks.
  • Create and maintain technical documentation related to security assessments, vulnerability findings, and recommended remediation measures, SOPs, work instructions, and procedures.
  • Actively participate in the continuous improvement of security processes, methodologies, and tools used in the OT cyber security program.

Requirements

  • Minimum of 5+ years of experience in cybersecurity roles.
  • B.S. degree in Information Technology, Information Security, Cybersecurity, Networking, Computer Science, or related technical field is preferred.
  • Solid understanding of OSI layer and TCP/IP models, defense in depth strategies, and applying secure design principles in securing applications, networks, servers, and cloud environments.
  • Ability to work independently with little day-to-day guidance to achieve targets and goals.
  • Relevant certifications such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+, Certified Ethical Hacker (CEH), etc.
  • Excellent communication and interpersonal skills.

Nice-to-haves

  • Experience with regulatory compliance related to cybersecurity standards (e.g., NERC CIP, IEC 62443).
  • Familiarity with incident response processes and methodologies.
  • Experience in conducting security awareness training for teams.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service