Cyber Security Consultant

Job Description

Responsibilities: • Support OT vulnerability management program across the enterprise. • Utilize Armis and tools for vulnerability scans and reports. • Perform asset discovery scanning and provide gap analysis. • Drive remediation efforts and manage penetration testing projects. • Develop and implement OT Vulnerability Management operational roadmap and Plan. • Develop and implement OT VM processes, guidelines, standards, and metrics. • Develop and implement OT vulnerability prioritization frameworks, remediation prioritization frameworks. • Lead remediation tracking meetings to explain vulnerabilities and possible remediation/mitigation solutions. • Motivate remediators to commit to remediation plans while ensuring business operations are not negatively impacted. • Lead zero-day/emergency-vulnerability evaluation and resolution. • Ensure OT-VM vendor provides day-to-day support to the customer. • Develop solutions to mitigate security risks and present findings to various audiences. • Research vulnerabilities and coordinate with teams to remediate compliance findings. • Maintain continuous improvement mindset and effective problem-solving approach. • Conduct security reviews and assessments of OT security and cybersecurity risk landscapes. • Provide cybersecurity assessments of OT/ICS environments. • Monitor and collect data from OT networks using specialized tools. • Develop and refine documentation for OT security vulnerability assessment processes. • Prepare detailed cybersecurity vulnerability metrics and reports for OT environments. • Work with Semiconductor OEM Labs to manage and secure specific OT assets. • Ensure OT network designs meet specified security standards and build network architecture drawings. • Implement cybersecurity measures specific to Semiconductor Labs, including securing IP blocks and addressing vulnerabilities in the chip design and manufacturing process • Analyze and mitigate cybersecurity threats affecting semiconductor technologies and their supply chain • Develop proactive security frameworks tailored to the unique challenges faced by semiconductor firms Qualifications: • Experience with Armis, and IT vulnerability management tools. • Knowledge of security operations, incident response, and threat analysis. • Familiarity with NIST 800-82, IE62443, ISO 27001, and CIS Benchmarks. • Understanding of networking and security technologies. • Experience with OT/ICS network monitoring and data collection tools. • Expertise in MITRE ATT&CK and ATT&CK for ICS Frameworks. • Ability to identify systemic security issues and communicate risks effectively. • Proficiency in OT/ICS network design and architecture. • Experience with Semiconductor OEM Labs specific OT assets. • Knowledge of semiconductor-specific cybersecurity practices and standards