Senior Staff Cyber Security Engineer

November 4

Apply Now

Receive Emails with Similar Jobs

GE

WebsiteLinkedInAll Job Openings

Oil & Gas • Healthcare • Intelligent Platforms • Renewable Energy • Transportation

10,000+

Description

• Lead M&D’s incident response program, working closely with the Business Response Team (BRT) to reduce threats and respond to events within SLA. • Lead post-response root cause analysis and action improvements. • Act as a L2 expert and lead for M&D’s vulnerability management program, while ensuring vulnerability KPIs are met or exceeded. • Lead M&D’s ISO 27001 annual certification program. • Perform cyber security risk assessments across the M&D platform as needed and ensuring mitigation and avoidance measures are implemented. • Provide expert RTS support for external and internal customers for cyber security inquires related to governance, compliance framework adherence (ISO 27001, NERC CIP, Purdue Model, etc.), and support customer OT security audits. • Represent M&D in all cyber security matters to customers and external regulatory entities. • Operationalize proactive measures to support security strategies such as least privilege and multi-factor authentication access, access audits and security logging and monitoring. • Contribute to M&D’s overall cyber security strategies. • Research and evaluate new products, technologies and cyber security regulations, and keep abreast of emerging industry trends. • Provide effective solutions and support to stakeholder teams to ensure GE Vernova’s security requirements and standards are met for M&D’s On-Site-Monitor (OSM) and related infrastructure. • Implement enterprise systems management best practices and standards to integrate security controls and define and document processes and procedures to measure and maintain them. • Promote a culture of security awareness.

Requirements

• Bachelor of Science degree in Cybersecurity, Computer Science, Information Technology, Network Engineering, Electrical Engineering, or related field. • Minimum of 8 years of cyber security experience. • Working knowledge of vulnerability management processes and scanning tools such as Qualys, Aqua, etc. • Working knowledge of incidence response processes and threat detection tools such as CrowdStrike, etc. • Working knowledge of ISO 27001 compliance standards. • Working knowledge of Operational Technology (OT) compliance frameworks and controls such as NERC CIP, Purdue Model, NIST etc. • Ability and willingness for up to 10% travel. • Working knowledge of cyber security governance processes, policies and standards development and documentation, and supporting audits. • Working knowledge of cyber security risk mitigation and avoidance processes including windows patching. • Working knowledge of IDS/IPS, pen tests, firewalls, switches, routers, and network scanning tools. • Solid written and oral communication skills. • Strong customer focus mindset. • Strong interpersonal and influencing skills. • Experienced and demonstrated success working in a matrixed environment.

Benefits

• Healthcare benefits include medical, dental, vision, and prescription drug coverage. • Access to a Health Coach, a 24/7 nurse-based resource. • Access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. • Retirement benefits include the GE Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions. • Access to Fidelity resources and planning consultants. • Tuition assistance. • Adoption assistance. • Paid parental leave. • Disability insurance. • Life insurance. • Paid time-off for vacation or illness.