CAREERS

Come join our team of highly motivated engineers, consultants, and operations staff

Current Openings

ICS Security Consultant                                                    Full-Time – Houston, TX

Summary

SGV International, LLC (SGV) is looking for an ICS Security Consultant to assist our clients with identifying digital security risks, developing security architectures, and implementing ICS security solutions. SGV’s core focus is on industrial networks, industrial control systems (ICS), and telecommunication system integration for the oil and energy industries.

You will need a strong understanding of ICS / Operational Technology (OT) environments and cybersecurity best practices to secure such environments.

General Responsibilities & Duties
  • Perform detailed technical analysis of Industrial Control Systems (ICS) environment and cyber security controls in place to ensure compliance with Industry standards and client policies;

  • Identify cyber security gaps and recommend mitigation strategies to address gaps;

  • Conduct critical telecoms infrastructure vulnerability assessments for both compliance and security purposes;

  • Perform detailed, post event analysis of cyber events, and direct needed incident response procedures;

  • Maintain knowledge of the cyber security capabilities of operating systems, networking devices, control systems, and vendor offerings;

  • Maintain a broad knowledge of current and emerging state-of-the-art computer/network systems technologies, architectures, and products;

  • Maintain a working knowledge of applicable cyber security standards involving IT and OT systems, including those relating to process networks;

  • Work methodically and analytically in a quantitative problem-solving environment;

  • Resolve technical issues considering business impact, and be able to communicate issue resolutions to IT and OT organizations;

  • Execute the planning, design, development and implementation of technical controls, procedures and policy associated with compliance to United States government, industry regulatory requirements, and NIST cyber security guidance;

  • Develop policies and procedures, secure process control network design, technical and design recommendations for the implementation of firewalls and other network security and compliance controls;

  • Create conceptual designs and specifications for SCADA/EMS/DCS systems, including integrating these systems with various automation schemes and system vendor architectures;

 
Qualifications & Skills
  • Minimum of 7 years of experience in related enterprise and ICS security systems

  • Understanding of security principles and working knowledge of cyber security technologies

  • CISSP, CISM, CISA, QSA, ISO, or ITIL certifications preferred

  • Experience with cyber security vulnerability assessments, penetration tests, and the tools/techniques involved in both;

  • Experience in the capabilities and/or configuration of cyber security controls, specifically those relating to firewalls, intrusion detection systems, access control, authentication, anti-virus/anti-malware, patching and hotfix, logging;

  • General knowledge of control systems in use in the energy sector, specifically those in Upstream, Midstream, and Downstream oil and gas facilities.

  • Strong effective written and oral communication skills.

  • Strong analytical and critical thinking skills.

  • Ability to operate under pressure and under tight deadlines, to operate in on-site industrial work, and occasional night and weekend work.

  • Demonstrated capability to make sound decisions based on good security practices and principles.

  • Demonstrated understanding of business principles and operational security practices specific to engineering and/or security consulting.

  • Experience with corporate policies and procedures and/or technical writing skills.

  • Experience with network routing, switching, and TCP/IP.

  • Experience with physical cabling for network communications and control system I/O

  • Knowledge with the following technologies:

    • Firewalls/UTM/ADC Technologies: Cisco, Juniper, Palo Alto, etc.

    • IDS/IPS

    • Experience in setting up and managing Security Information and Event Management (SIEM) systems

    • Antivirus / Malware endpoint protection

    • Encryption - PKI

    • VPNs – IPSEC, SSL,

    • Proxy services

    • DNS

    • Email Gateway/Spam Solutions

    • Load Balancing

    • Web, application and network security techniques

How to Apply

Submit resume to:

E-mail: careers@sgvinternational.com

Fax: (713) 647-7558

© 2019 SGV International, LLC