TC - CS - Cyber Architecture - OT And Engineering - OT Security - Senior

EY- Cyber Security (OT Security) – Technology Consulting – Senior:

About Global Delivery Services

Global Delivery Services refers to EY's worldwide network of service delivery centers. The GDS team plays an important role in EY’s strategy by ensuring effective support to EY’s growth agenda.

Our journey started in 2002 with approximately 200 people. Today we stand at 80,000+ professionals in ten locations around the world. We operate in Argentina, China, Hungary, India, Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom.

Client service is focused on providing Consulting, Assurance, Tax, Strategy & Transactions, and Knowledge support to our clients around the world. The teams enable account teams worldwide to provide seamless, high-quality, value-added support, helping deliver exceptional client service.

Enablement Services provides cost-effective, high-skilled, and innovative services to support EY’s global and local enablement teams. Markets, BMC, AWS, Finance and Accounting, Risk Management, Procurement, People Shared Services, IT Service Delivery and IT Global Infrastructure services, are among the services offered by Enablement Services.

Our innovation specialists serve the GDS Client Service and Enablement Services teams, along with Service Lines, Core Business Services and Sectors. The team brings the desired environment, technologies and skilled teams together for facilitation, rapid prototyping and innovative thinking. The competencies offered include analytics, digital, user experience, mobile technology, infrastructure, Microsoft technologies and open innovation.

The Opportunity

The GDS Cyber Architecture Operational Technology & Engineering (CAOE) services help our clients tackle the many security challenges they face on a daily basis and develop effective solutions using people, processes and technology, while enabling better security and risk decisions, and reducing costs related to manging security risks. The CAOE team is looking for individuals who will play a direct role in delivery of Operational Technology (OT) security engagements, development of proposals in this area, and develop OT security solutions. You will play a key role in supporting our clients to secure their IT/OT environments, either through advisory and/or implementation support.

Your Key Responsibilities

• Monitor OT networks using specialized OT SOC and network monitoring tools 
• Analyse alerts from OT security monitoring solutions (e.g., Nozomi, Claroty, Tenable.ot, Defender for IoT, etc.)
• Identify suspicious activities, anomalies, and indicators of compromise (IoCs) affecting ICS environments
• Perform Level 2 alert triage and investigation for OT incidents
• Support for OT cybersecurity incident response activities
• Understanding of security-related operational processes in the OT-ICS environments
• Understanding of technologies (typical assets, communication protocols, technical architectures) utilized by OT-ICS systems and networks
• Knowledge of cyber / information security concepts, risk and controls concepts
• Understanding of aspects of functional safety (SIS)
• Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts
• Knowledge of the technical security solutions utilized within OT-ICS systems and networks
• Knowledge of OS (Windows / Linux) security, Database security 
• Prior experience working alongside delivery leads and architects to Identify and manage risks is a plus

Skills and attributes for success

• Completed technical higher education in the field of industrial automation, computer science, electronics or other relevant fields
• Certificates or education related to industrial automation / engineering etc.
• Knowledge on OT network monitoring solution such as Nozomi, Claroty, Armis, DarkTrace, Azure Defender
• Knowledge on tools like Nessus, BackTrack, NMAP, BurpSuite, etc. is a plus
• Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP
• Understanding of IT/OT/IoT communication protocols e.g., TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, PROFINET, BLE, Zigbee
• Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, etc. is a plus 

To qualify for the role, you must have

• 5+ years of experience in the Cyber Security and OT Security Domain
• Minimum B. Tech. or equivalent educational qualification
• ISA/IEC 62443 Fundamentals Specialist
• CompTIA Network+
• CompTIA Security+
• Cisco CCNA (Industrial)

What we look for

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. 

• Our Commitment: As a commitment, we persistently endeavour to embody our values, fulfil our purpose, and champion inclusiveness. Our dedication is to cultivate EY into an environment where diverse perspectives are celebrated, creating a supportive atmosphere for individuals to authentically be themselves and contribute their utmost.
• Professional Development: From entry-level employees to senior leaders, we believe in continuous learning. We offer opportunities to build new skills, take on leadership roles, and connect and grow through mentorship.
• People and Culture: In our dynamic workplace, diversity, equity, and inclusiveness are ingrained in our culture. We're united by a commitment to create an environment where every individual's differences are valued, practices are equitable, fostering a sense of belonging. Our shared values include integrity, respect, teaming, inclusiveness, energy, enthusiasm, courage to lead, and building relationships based on doing the right thing.
• Benefits: Embark on a transformative career journey with us and indulge in a suite of premium benefits, encompassing exclusive health and wellness packages, enticing rewards, and cutting-edge learning opportunities that empower you to continually grow and excel in your professional and personal development.
• How to Apply: If you are passionate to join us and are aligned with our commitment to building a better working world, we invite you to apply by completing our user-friendly form with personal and professional information and by providing your consent to data privacy.