Major Tasks & responsibilities:
61Reports to Global OT Security Officer
61Responsible for executing and implementing OT Security projects as defined in OT Security Strategy within assigned or other regions as needed. Develops and maintains project documentation to numerous audiences.
61Responsible for implementation of OT Security standards at small sites, system houses and downstream businesses where the Local OT Security officer is not a DCS or Cybersecurity Expert
61Consulting for local PCT on IT related technical issues on security aspects of process automation systems (e.g. domains, time synchronization, license management, firewalls, patching, server hardening, etc.)
61Maintain the strong relationship with major site PCT for consulting and supporting the implementation of cybersecurity risk mitigation measures.
61Conceptualizes and coordinates implementation of IT Security for IT-Systems and IT-Networks of production environments
61Acts as liaison for OT specific Incident Response. Liaison with SOC, Incident Response teams, Local OT Security Caretaker, vendor and IT for incident response
61Responsible for coordination and supporting OT Security Experts in the region
Awareness, Information sharing and collaboration
61Identify and report local awareness and training needs within PCT or IT. Facilitate local communication to maintain higher awareness.
61Maintains high awareness of security warnings -Receive and scout security warnings. Report to the Global OT Security officer and distribute consumable and relevant information to local PCT organization
61Participate and contribute in OT Security community meetings held by Global OT Security Officer
61Responsible for planning, and hosting APAC Regional OT Security community meetings
61Contribute to regional and global experience exchange and knowledge availability regarding OT security for PCT environments, including internal experts from Covestro and external experts from suppliers and other companies
61Maintains high level of understanding and knowledge of cybersecurity fundamentals and developments.
Minimum Qualifications:
61Bachelors Degree in engineering or computer sciences or related degree with 6+ years of experience in system security and security controls OR a Masters Degree with 4+ years of experience will also be considered
Essential Skills:
61Professional experience in PCT domain is preferred.
61Proven strong network and infrastructure background
61Strong negotiating, influencing and problem resolution skills
61Experience of working with different cultures
61Effectively communicates risks and risk mitigation programs to the senior leadership and stakeholders
61Working knowledge with Industrial Cybersecurity standards such as IEC 62443, NIST
61Professional Security related certifications (GICSP, ISA/IEC 62443 Expert etc.) would be a plus
61Good understanding of the current threat landscape and counter measures
61Experience with AWS would be a plus
61Willingness to travel within assigned region and globally
61Fluent in English