2 Nozomi Jobs

EY- Cyber Security (OT Security) Technology Consulting Senior GDS Advisory's Risk group is a unique, industry-focused business unit that provides a broad range of integrated services that leverage deep industry experience with strong functional capability and product knowledge. Risk practice team provides integrated advisory services to leading Fortune 500 Companies. The team provides Risk Assurance, Risk Transformation, Internal Audit, Cybersecurity, Financial Services Risk Management and Actuarial services that take an enterprise-wide view, so that risk mitigation and risk management strategies and processes are embedded in every part of the organization. Our services mitigate risk, reduce the cost of control and help create value. The opportunity The GDS Architecture Engineering and Emerging Technology (AEET) services help our clients tackle the many security challenges they face on a daily basis and develop effective solutions using people, processes and technology, while enabling better security and risk decisions, and reducing costs related to manging security risks. The AEET team is looking for individuals who will play a direct role in delivery of Operational Technology (OT) security engagements, development of proposals in this area, and develop OT security solutions. You will play a key role in supporting our clients to secure their IT/OT environments, either through advisory and/or implementation support. Your key responsibilities To qualify, candidates must have: Understanding of security-related operational processes in the OT-ICS environments Understanding of OT SOC/ OT Identity Access Management/ OT Pen testing/ Zero Trust on OT Understanding of technologies (typical assets, communication protocols, technical architectures) utilized by OT-ICS systems and networks Knowledge of cyber / information security concepts, risk and controls concepts Understanding of aspects of functional safety (SIS) Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts Knowledge of the technical security solutions utilized within OT-ICS systems and networks Knowledge of OS (Windows / Linux) security, Database security Knowledge of IT infrastructure Knowledge of cyber threats and vulnerabilities related to platform and infrastructure is a plus Prior experience working alongside delivery leads and architects to Identify and manage risks is a plus Skills and attributes for success Completed technical higher education in the field of industrial automation, computer science, electronics or other relevant fields Certificates or education related to industrial automation / engineering etc. Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP Knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, etc. is a plus Knowledge on tools like Nessus, BackTrack, NMAP, BurpSuite, etc. is a definite plus Knowledge on OT network monitoring solution such as Nozomi, Claroty, Armis, DarkTrace, Azure Defender. To qualify for the role, you must have 5+ years of experience in the Cyber Security and OT Security Domain Minimum B. Tech. or equivalent educational qualification ISA/IEC 62443 Fundamental* SCADA Fundamentals CompTIA Network+ CompTIA Security+ What we look for A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries What working at EY offers At EY, were dedicated to helping our clients, from startups to Fortune 500 companies and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way thats right for you

We are currently seeking individuals interested in helping us to design, deploy and maintain NIDS that Alstom uses to maintain and improve security posture of Alstom Products and Solutions. The selected candidate will prepare and execute Design & Deployment activities if NIDS for one or several Projects and /or Programs. Also, he will act as the Maintainer / Administrator of NIDS and provide maintenance and support to projects. NETWORK & LINKS: The Selected candidate report to Program Cybersecurity Manager and will work with a highly motivated Cybersecurity team involved in Design & Deployment of Cyber Applications for Alstom Projects at Lab and at Customer sites. The selected candidate will be acting as the Design & Deployment Engineer of Alstom Cybersecurity Application and provide maintenance and support to projects. The candidate will be positioned at Bangalore Technology Center of Alstom Digital & Integrated System division . INTERNAL The candidate will have strong links internally with Manager CylusOne Competency Center Director - Cybersecurity Service Center Regional Cybersecurity Managers Platform Cybersecurity Managers Program / Project Cybersecurity Managers EXTERNAL Project / Program Managers Regional Center Test & Commissioning team Platform validation team Product & Systems team Customers Tools and Applications supplier RESPONSIBILITIES : The Cybersecurity Engineer Cyber Applications perform the following activities: Maintain Cybersecurity Tools and Applications. Prepare and execute Design & Deployment activities to one or several Projects and /or Programs. Executes specific testing activities according to the testing procedure / documentation and prepare test reports. Support V&V team and perform test on platform / in factory as per request. Act as the Maintainer / Administrator user of Alstom Cybersecurity Application and provide maintenance and support to projects. Identify required Cybersecurity tools and practices. Provide documentation and training/guidance to the users of the tool and secure the deployment. Perform regular management activities like workload and capacity management, incident ticket assignment and follow up for closure within SLA and performance management of the team members. Qualifications & Skills: Minimum 6 years of experience in Cybersecurity with considerable experience in design, deploy, maintain and support tools and applications. Desirable from System / Network administration or industrial control system background. Preferably to have experience from Railway Cybersecurity domain. EDUCATION Bachelors or Masters in Computer Science, Information Technology or equivalent Must have any one of certifications like Microsoft Certified Solutions Expert (MCSE) or Red Hat Certified Engineer (RHCE) or Linux Professional Institute Certifications (LPIC-1 or LPIC-2 or LPIC-3) Must have any of the Networking certification like, CCNA, Network+ etc. Preferable have any of the cybersecurity certification like ECSA, Security+ etc. BEHAVIORAL COMPETENCIES: Strong individual and a team Player. Be Innovative and be aligned to new technologies, Methods and Tools. Demonstrate excellent communication skills and able to guide, influence and convince others in a matrix organization. Prior experience in working with customer from diverse geographic location is desirable. TECHNICAL COMPETENCIES & EXPERIENCE Expertise on Design & Deployment of NIDS like Fortinet, Nozomi, Dragos etc., Experience in System administration of Windows or Linux Servers/Systems. Experience in Network administration, configuration of switches, routers, wireless, GSM, OFC and other network technologies. Understanding of security technologies (firewalls, IDS/IPS, etc.) and application programming / Scripting languages (C, Java, Python, Shell). Knowledge of cryptography is a plus. Knowledge of SOC and SIEM is a plus. Experience in Incident response activities is a plus. Experience in presenting to or training technical content to audiences a plus. A technical writing experience is a plus. Considerable experience in maintenance and support as in Customer facing roles like IT/OT Support. Having good experience and able to work independently on at least few of security tools. EXPERIENCE / SKILL SET Platform Windows, Red Hat Linux, Kali Linux Language Skills: Proficient in English language IT Skills: MS office tools (Word, Excel, PowerPoint), Visio. Security tools Wireshark, NMAP