Job Details

Home

PCN or OT Risk Analyst (Energy) Hybrid role in CA No H1B at El Segundo, California, USA

Email: [email protected]

From:

ayush,

istaff

[email protected]

Reply to: [email protected]

Hi,

Hope so you are doing Good!!!

Please find the Job Description. If you feel comfortable yourself then send me your updated resume or call me back on 575-236-4255.

Please focus on highlighted option and work accordingly.

Title: PCN / OT Risk Analyst (Energy)

Location: El Segundo, CA / Richmond, CA (Hybrid schedule; 1-2 days on-site per week) 1 position in each location.

Duration: 12 Months (W-2 contract)

Client: Chevron This position must be worked on W-2, and in either Richmond, CA or El Segundo, CA.

This role is open to C2C or directly on our W/2. Chevron has given me 72 hours to submit candidates. Candidates must have Operational Technology experience in an industrial control environment: Oil and Gas, maybe Medical facilities, Tesla, Amazon, etc.

Openings: 2

Role Description:

The Risk Analyst is responsible for providing guidance on tools to measure and manage risk, identify/mitigate threats, and protect against unauthorized disclosure of confidential information.

Risk Analysts duties include assessing the adequacy of security strategies, adherence to security guardrails and calculating the impact of adverse events or threats.

Ideal candidates will assist in ensuring effective execution of cybersecurity strategies and our risk management framework by managing relationships with key stakeholders, verifying that IT risks are appropriately mitigated, as well as providing periodic updates on the state of compliance.

Responsibilities:

Advises leadership on cybersecurity initiatives that supports the latest trends in IT security, risk, and controls.

Facilitates compliance of all equipment utilized in the Process Control Network (PCN)/Operational Technology (OT) and Demilitarized Zone (DMZ), including timely remediation of critical vulnerabilities.

Supports and integrates IT standards into the PCN environment.

Serves as site representative for internal and external cyber initiatives, including the annual Coast Guard inspection.

Serves as Process Advisor for the Operations Technology Incident Response Process (OTIRP)

Maintains cybersecurity documentation including Business Continuity and Disaster Recovery Plans

Facilitates risk assessment exercises, perform compliance and risk monitoring/validation, and other compliance assurance exercises as required.

Leads awareness and training for the information technology risk program elements to ensure responsibilities are understood and executed.

Coordinates external and internal assurance or advisory audits, representing information technology throughout the lifecycle of the audit (from planning through remediation strategy).

Monitors, tracks, and reports mitigation and resolution of IT risks.

Works closely with other technical, incident management, and forensic personnel to develop a broader understanding of the intent, objectives, and activities of cyber threat actors and support the cyber defense program.

Required Qualifications:

Minimum 3-5 years related work experience in Information Technology field.

Work experience in Operational Technology/Industrial Controls Systems field

Knowledge of and experience with Industry Policies, Standards and Controls (e.g., NIST 800-53, IEC-62443 in an ICS environment, ISO 27001, COBIT, ITIL, SOX, PCI-DSS, SANS, etc.).

Understanding of key technology/data concepts such as access control, confidential data, encryption, data privacy, information management, intellectual property, business continuity, disaster recovery, security scans, and 3rd party/vendor applications.

Strong knowledge of IT organization business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns).

Certifications:

Desired but not required - Certifications in Industrial Control Systems Cybersecurity, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager, (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or other Cybersecurity Certifications (e.g. GISCP, GCIP, or similar certifications).

Education:

Associate or Bachelors degree in Computer Science, Cybersecurity, Information Technology, or a similar technical degree.

Regards.

Ayush Kumar | iStaffX LLC.

IT Recruiter , Email: [email protected]

Phone: 575-236-4255

Website - https://istaffx.com/

Keywords: information technology California

[email protected]
View all

Mon Feb 06 21:34:00 UTC 2023

To remove this job post send "job_kill 332749" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

ayush@istaffx.com wrote:
From:

ayush,

istaff

ayush@istaffx.com

Reply to:   ayush@istaffx.com

Hi,

Hope so you are doing Good!!!

Please find the Job Description. If you feel comfortable yourself then send me your updated resume or call me back on 575-236-4255.

Please focus on highlighted option and work accordingly.

Title:  PCN / OT Risk Analyst (Energy)

Location: El Segundo, CA / Richmond, CA (Hybrid schedule; 1-2 days on-site per week) 1 position in each location.

Duration:  12 Months (W-2 contract)

Client: Chevron  This position must be worked on W-2, and in either Richmond, CA or El Segundo, CA.

This role is open to C2C or directly on our W/2. Chevron has given me 72 hours to submit candidates. Candidates must have Operational Technology experience in an industrial control environment: Oil and Gas, maybe Medical facilities, Tesla, Amazon, etc.

Openings: 2

Role Description:

The Risk Analyst is responsible for providing guidance on tools to measure and manage risk, identify/mitigate threats, and protect against unauthorized disclosure of confidential information.

Risk Analysts duties include assessing the adequacy of security strategies, adherence to security guardrails and calculating the impact of adverse events or threats.

Ideal candidates will assist in ensuring effective execution of cybersecurity strategies and our risk management framework by managing relationships with key stakeholders, verifying that IT risks are appropriately mitigated, as well as providing periodic updates on the state of compliance.

Responsibilities:

Advises leadership on cybersecurity initiatives that supports the latest trends in IT security, risk, and controls.

Facilitates compliance of all equipment utilized in the Process Control Network (PCN)/Operational Technology (OT) and Demilitarized Zone (DMZ), including timely remediation of critical vulnerabilities.

Supports and integrates IT standards into the PCN environment.

Serves as site representative for internal and external cyber initiatives, including the annual Coast Guard inspection.

Serves as Process Advisor for the Operations Technology Incident Response Process (OTIRP)

Maintains cybersecurity documentation including Business Continuity and Disaster Recovery Plans

Facilitates risk assessment exercises, perform compliance and risk monitoring/validation, and other compliance assurance exercises as required.

Leads awareness and training for the information technology risk program elements to ensure responsibilities are understood and executed.

Coordinates external and internal assurance or advisory audits, representing information technology throughout the lifecycle of the audit (from planning through remediation strategy).

Monitors, tracks, and reports mitigation and resolution of IT risks.

Works closely with other technical, incident management, and forensic personnel to develop a broader understanding of the intent, objectives, and activities of cyber threat actors and support the cyber defense program.

Required Qualifications:

Minimum 3-5 years related work experience in Information Technology field.

Work experience in Operational Technology/Industrial Controls Systems field

Knowledge of and experience with Industry Policies, Standards and Controls (e.g., NIST 800-53, IEC-62443 in an ICS environment, ISO 27001, COBIT, ITIL, SOX, PCI-DSS, SANS, etc.).

Understanding of key technology/data concepts such as access control, confidential data, encryption, data privacy, information management, intellectual property, business continuity, disaster recovery, security scans, and 3rd party/vendor applications.

Strong knowledge of IT organization business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns).

Certifications:

Desired but not required - Certifications in Industrial Control Systems Cybersecurity, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager, (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or other Cybersecurity Certifications (e.g. GISCP, GCIP, or similar certifications).

Education:

Associate or Bachelors degree in Computer Science, Cybersecurity, Information Technology, or a similar technical degree.

Regards.

Ayush Kumar | iStaffX LLC.

IT Recruiter , Email: Ayush@istaffx.com

Phone: 575-236-4255

Website - https://istaffx.com/

Keywords: information technology California

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 9

Location: El Segundo, California