4 Gicsp Jobs

Hi all, We are hiring for the role OT Security Specialist Location: Bangalore Experience: 7-9 years Industry: Automotive Job Description: We are seeking a highly skilled OT Security Expert with 7-9 years of experience to join our team in the automotive industry. The ideal candidate will have hands-on experience in OT security, proficiency with the OT vulnerability management tools, and the ability to draft process documents. This role requires a deep understanding of operational technology security and its application within the automotive sector. Key Responsibilities: • Drive OT security strategies-initiative globally. • Develop and implement OT security strategies and policies to protect automotive manufacturing systems and networks. • Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. • Utilize the Otorio tool to monitor, detect, and respond to security incidents within OT environments. • Draft and maintain comprehensive process documents, including security protocols, incident response plans, and compliance reports. • Collaborate with cross-functional teams to ensure the integration of security measures into automotive production processes. • Provide training and guidance to staff on OT security best practices and procedures. • Stay updated with the latest industry trends, threats, and technologies in OT security. • Design and implement network segmentation and access control measures to safeguard OT systems. • Perform regular security audits and assessments to ensure compliance with industry standards and regulations. • Develop and execute incident response plans to effectively address and recover from security breaches. • Work closely with IT and engineering teams to ensure seamless integration of OT security measures with existing infrastructure. • Conduct forensic analysis and root cause investigations of security incidents to prevent future occurrences. • Participate in the development and testing of disaster recovery and business continuity plans. Qualifications: • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. • 7-9 years of experience in OT security, preferably within the automotive industry. • Hands-on experience with the Otorio tool and other OT security technologies. • Strong understanding of OT systems, networks, and protocols. • Experience in drafting and maintaining process documents and security protocols. • Relevant certifications such as GICSP, ISA 62443 related are highly desirable. If you are interested drop your resume at mojesh.p@acesoftlabs.com call: 9701971793

EY- Cyber Security (OT Security) Technology Consulting Senior GDS Advisory's Risk group is a unique, industry-focused business unit that provides a broad range of integrated services that leverage deep industry experience with strong functional capability and product knowledge. Risk practice team provides integrated advisory services to leading Fortune 500 Companies. The team provides Risk Assurance, Risk Transformation, Internal Audit, Cybersecurity, Financial Services Risk Management and Actuarial services that take an enterprise-wide view, so that risk mitigation and risk management strategies and processes are embedded in every part of the organization. Our services mitigate risk, reduce the cost of control and help create value. The opportunity The GDS Architecture Engineering and Emerging Technology (AEET) services help our clients tackle the many security challenges they face on a daily basis and develop effective solutions using people, processes and technology, while enabling better security and risk decisions, and reducing costs related to manging security risks. The AEET team is looking for individuals who will play a direct role in delivery of Operational Technology (OT) security engagements, development of proposals in this area, and develop OT security solutions. You will play a key role in supporting our clients to secure their IT/OT environments, either through advisory and/or implementation support. Your key responsibilities To qualify, candidates must have: Understanding of security-related operational processes in the OT-ICS environments Understanding of OT SOC/ OT Identity Access Management/ OT Pen testing/ Zero Trust on OT Understanding of technologies (typical assets, communication protocols, technical architectures) utilized by OT-ICS systems and networks Knowledge of cyber / information security concepts, risk and controls concepts Understanding of aspects of functional safety (SIS) Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts Knowledge of the technical security solutions utilized within OT-ICS systems and networks Knowledge of OS (Windows / Linux) security, Database security Knowledge of IT infrastructure Knowledge of cyber threats and vulnerabilities related to platform and infrastructure is a plus Prior experience working alongside delivery leads and architects to Identify and manage risks is a plus Skills and attributes for success Completed technical higher education in the field of industrial automation, computer science, electronics or other relevant fields Certificates or education related to industrial automation / engineering etc. Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, etc. is a plus Knowledge on tools like Nessus, BackTrack, NMAP, BurpSuite, etc. is a definite plus Knowledge on OT network monitoring solution such as Nozomi, Claroty, Armis, DarkTrace, Azure Defender. To qualify for the role, you must have 5+ years of experience in the Cyber Security and OT Security Domain Minimum B. Tech. or equivalent educational qualification ISA/IEC 62443 Fundamental* SCADA Fundamentals CompTIA Network+ CompTIA Security+ What we look for A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries What working at EY offers At EY, were dedicated to helping our clients, from startups to Fortune 500 companies and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way thats right for you

Enabling a software-defined, electrified future. Visteon is a technology company that develops and builds innovative digital cockpit and electrification products at the leading-edge of the mobility revolution. Founded in 2000, Visteon brings decades of automotive intelligence combined with Silicon Valley speed to apply global insights that help transform the software-defined vehicle of the future for many of the worlds largest OEMs. The company employs 10,000 employees in 18 countries around the globe. To know more about us click here. Mission of the Role: As a Global OT Security Manager, you will be a key leader in our organization, responsible for safeguarding and enhancing the security of our operational technology (OT) systems and processes on a global scale. You will work to protect critical infrastructure, manufacturing processes, and industrial control systems, ensuring the uninterrupted and secure operation of our business. If you are an experienced OT Security Professional and passionate about technology and achieving operational excellence by designing and implementing reliable and secure OT practices, we encourage you to apply for this exciting opportunity and become a key member of our dedicated Cyber Security Team. Key Objectives of this Role: Global OT Security Strategy: Develop, implement, and oversee a global OT security strategy that aligns with the organization's business objectives and risk tolerance. Define and maintain a roadmap for enhancing the security of OT systems and technologies worldwide. OT Risk Assessment and Mitigation: Conduct comprehensive risk assessments to identify vulnerabilities, threats, and potential security risks in OT environments. Develop and implement risk mitigation measures to minimize the impact of security incidents and breaches. Oversee the design and implementation of OT projects across Visteon. Security Standards and Compliance: Ensure OT security standards and best practices are established and adhered to globally, in compliance with industry standards and regulations. Monitor and manage compliance with relevant cybersecurity regulations, including NERC CIP, IEC 62443, and other industry-specific standards. Incident Response and Recovery: Develop and maintain global incident response plans for OT security incidents, coordinating with IT and business continuity teams. Lead incident response efforts in the event of security breaches, ensuring timely containment and recovery. Security Monitoring and Assessment: Establish continuous monitoring and assessment mechanisms for OT security, leveraging technologies like industrial firewalls, intrusion detection systems, and anomaly detection. Implement periodic vulnerability assessments and penetration testing of OT environments. Security Awareness and Training: Develop and deliver OT security awareness and training programs for OT staff and stakeholders, emphasizing best practices and security protocols. Cross-Functional Collaboration: Collaborate with IT and OT teams to ensure a unified approach to security across IT and OT environments. Work closely with operational and engineering teams to balance security and operational requirements. Global Reporting: Generate and provide regular reports to senior management on the status of global OT security efforts, incident trends, compliance status, and risk reduction progress. Communicate the importance of OT security to key stakeholders and executives. Qualification, Experience and Skills: Bachelor's degree in Computer Science/ Engineering or a related field (e.g., Cyber Security, Information Technology) or equivalent work experience. Advanced degrees or industry certifications (e.g., CISSP, CISM, GICSP) are a plus. • A minimum of 7 years of experience in OT security management, including experience in global OT environments. • Strong knowledge of Industrial Control Systems (ICS), SCADA systems, and PLC technologies. • Familiarity with industry-specific standards and regulations, such as IEC 62443, or other relevant standards. • Experience in conducting risk assessments, vulnerability management, and incident response in OT environments. • Exceptional leadership, communication, and interpersonal skills to effectively lead and collaborate with cross-functional teams. • A commitment to maintaining the highest ethical standards and confidentiality when handling sensitive information. Visteon Culture: If you thrive in a fast-paced, organizational culture that requires agility, adaptability, and a growth mindset from its employees to thrive and stay ahead of the curve Visteon is the place. We value high performance and a drive for results. Innovation, risk-taking, and continuous learning help us keep up with the ever-changing landscape of our industry and be Market leaders. At Visteon you can be more. Bachelor's degree in Computer Science/ Engineering or a related field (e.g., Cyber Security, Information Technology) or equivalent work experience. Advanced degrees or industry certifications (e.g., CISSP, CISM, GICSP) are a plus. • A minimum of 7 years of experience in OT security management, including experience in global OT environments. • Strong knowledge of Industrial Control Systems (ICS), SCADA systems, and PLC technologies. • Familiarity with industry-specific standards and regulations, such as IEC 62443, or other relevant standards. • Experience in conducting risk assessments, vulnerability management, and incident response in OT environments. • Exceptional leadership, communication, and interpersonal skills to effectively lead and collaborate with cross-functional teams. • A commitment to maintaining the highest ethical standards and confidentiality when handling sensitive information. Key Behaviors: Evaluating Problems Critical Thinking (Investigating Issues) Collaboration Communicating Information Providing Leadership Building Effective Teams Demonstrating Global Mindset Processing Details Driving Success

Your future role Take on a new challenge and apply your comprehensive cybersecurity expertise in a new cutting-edge field. You'll work alongside dedicated, innovative, and forward-thinking teammates. You'll lead the charge in safeguarding our products and solutions, ensuring they meet the highest cybersecurity standards. Day-to-day, you'll work closely with teams across the business (Engineering, Product Development, Legal), strategize cybersecurity approaches, and much more. You'll specifically take care of developing the Cybersecurity Management Plan, conducting Threat Modelling, and defining Cybersecurity Architecture and Requirements. Additionally, you will manage the evaluation of our Program's cybersecurity level and provide pivotal support during cybersecurity audits. We'll look to you for: Analysis of security needs and formulation of security objectives and strategies Planning and integration of security activities within the development lifecycle Expert guidance to teams on implementing cybersecurity features Management of cybersecurity deliverables including quality, cost, and timeliness Handling of vulnerabilities, cybersecurity issues, and action plans Effective communication and reporting on cybersecurity status within the Program All about you We value passion and attitude over experience. That's why we don't expect you to have every single skill. Instead, we've listed some that we think will help you succeed and grow in this role: Degree in Engineering or a related field Experience or understanding of information technology and security Knowledge of product security areas such as cryptography, network protection, and identity management Familiarity with cybersecurity standards like ISO 2700X, IEC 62443, NIST A cybersecurity certification such as GICSP, CISSP, GSEC, or CISM is desirable Proven ability to manage quality, cost, and delivery of cybersecurity initiatives Strong interdisciplinary collaboration skills Things you'll enjoy Join us on a life-long transformative journey the rail industry is here to stay, so you can grow and develop new skills and experiences throughout your career. You'll also: Enjoy stability, challenges and a long-term career free from boring daily routines Work with cutting-edge security standards for rail signalling Collaborate with cross-functional teams and supportive colleagues Contribute to projects that redefine industry standards Utilise our dynamic and innovative working environment Steer your career in whatever direction you choose across functions and countries Benefit from our investment in your development, through award-winning learning programs Progress towards senior cybersecurity roles Benefit from a fair and dynamic reward package that recognises your performance and potential, plus comprehensive and competitive social coverage (life, medical, pension)