Local Cyber Security Expert
About the Role
Location United Kingdom England Lincoln Remote vs. Office Hybrid (Remote/Office) Company Siemens Energy Limited Organization Gas Services Business Unit Distributed Full / Part time Full-time Experience Level Not defined
A Snapshot of Your Day
Join us as an Industrial Cybersecurity Expert, where you will play a pivotal role in enhancing and maintaining the cybersecurity posture of our manufacturing sites in Lincoln and Worcester. You will engage with various stakeholders, including engineering, production, management, and Operational Technology, to define and address cybersecurity needs. Imagine implementing robust cybersecurity controls in line with ISO27001 and IEC62443 standards while supporting vulnerability management and incident handling. You will also contribute to disaster recovery and business continuity management, ensuring our operations remain resilient. Your expertise will be crucial during the architecture and design phases of production systems, as you help select cyber-secure suppliers for our site.
How You’ll Make an Impact
1. Act as the cybersecurity interface between engineering, production, management, and Operational Technology for factory operations.
2. Define and implement cybersecurity needs and demands, ensuring compliance with ISO27001 and IEC62443 standards.
3. Support vulnerability management and incident handling, contributing to disaster recovery and business continuity management (ISO22301).
4. Engage in the architecture and design phases of production equipment, systems, and solutions to enhance security.
5. Assist in the qualification and selection of cyber-secure suppliers related to the site.
What You Bring
6. Strong understanding of manufacturing infrastructure, including IT/OT security technologies and concepts.
7. Proven experience in incident and vulnerability handling, system hardening, and network concepts.
8. Familiarity with international and national standards for IT/OT security, particularly ISO27001 and IEC62443.
9. Excellent user-centric communication skills and experience in stakeholder management.
10. Knowledge of risk-based approaches, including threat and risk assessments.