Network and Cybersecurity Engineer na Gevernova

Job Description Summary

GE’s worldwide HVDC Centre of Excellence in Stafford, provides complete turn-key solutions for the rapidly-growing global HVDC market. Project Management, Engineering, Manufacturing, Test Laboratories and R&D are all located in Stafford.

You will be part of a team that defines the substation LAN Networks and ensures Cybersecurity compliance for the HVDC Substation Automation Systems. You will be working on a number of large global projects involving several stakeholders and knowledge of various cybersecurity standards is essential.

Job Description

Main duties and responsibilities will include.

 

• Knowledge on networks and Communication Architectures of the HVDC Control System from concept to commissioning based on the principles set out in IEC 62443-3-3.

• Act as the point of contact for all matters related to cybersecurity and networking in a project environment. This includes evaluating the solutions of various 3rd party suppliers which interface to the control system.

• Support Tendering teams during the bidding process for any cybersecurity and networking related requirements from various customers. Knowledge of a range of Cybersecurity regulations such as EU NIS, NERC and BDES is essential.

• Ensures the Secure Deployment Guides for the HVDC Control System and 3rd party system interfaces are adhered to.

• Ensures the Security Assurance Plans are followed by all relevant project stakeholders during the complete project duration.

• Define IP address strategies for the complete control system.

• Able to perform hardening in a substation environment.

• Share engineering information and promote open dialogue.

• Ensure documentation of technical data generated for the assigned projects and/or tasks is in line with engineering policies and procedures.

• Being able to map requirements between different cybersecurity standards.

• Being able to analyze and evaluate different cybersecurity and networking solutions.

• Being able to justify solution/analysis/evaluation in front of a customer and technical audience.

• Being able to build functional infrastructure from the ground up (Networking, virtualization, and server operating system configuration).

• Knowledge of the process for monitoring vulnerability publications.

• To be familiar with the patch management process to correct vulnerabilities published.

• Knowledge of documentation to be provided with the associated level of confidentiality.

• Understanding the design, configuration and testing required to deliver on time and within defined budgets.

• Follow the department’s standard design practices, engineering reviews and guidelines.

• Oversee the testing and FAT witnessing of the Control System.

• Assist site activities relevant to the installation and commissioning of the control system LAN network.

 

 

 

Required Qualifications

·       Qualification in Communication engineering or related field.

• Knowledge of IEC 62443 standard, mainly parts 4-1, 4-2, 3-3 and 2-4.

• Familiarity with secure remote access architectures using VPN and PKI technologies.

• Knowledge of virtualization platforms such as VMware, HyperV and Proxmox.

• Knowledge of configuring server operating systems, i.e. Windows Server.

• Knowledge of configuring next generation firewalls such as Fortinet.

• Knowledge of Intrusion Detection Systems such as Nozomi, Radiflow.

• Knowledge of anti-malware, patch management and disaster recovery tools.

• Knowledge of network monitoring and management.

• Knowledge of standard cyber topics such as VPN technologies, Secure Network Access, Endpoint Security, and Network Infrastructure Protection.

• Knowledge in Distributed Control Systems / Substation Automation.

• Knowledge in designing and configuring Substation LAN’s especially within an IEC61850 environment.

• Knowledge of Network Security / Hardening and Cybersecurity best practices.

• Excellent knowledge of commonly used protocols such as OSPF, VRRP, LACP, SNMP, SSH, SFTP.

• Knowledge of industrial protocols (IEC 61850, IEC 101 / 104, PTP, OPC UA, DNP3, Modbus TCP/IP) and methods to diagnose / debug using Wireshark.

• Knowledge with one of GE Reason, Westermo, Meinberg products is advantageous.

 

Salary: Competitive
Opening Date: tbc
Closing Date:   tbc                           

To apply visit:   Jobs Online via COS (Career Opportunity System) or www.ge.com/careers

If applying for this job opportunity and currently at risk of redundancy, then please advise us of this within your application.

Additional Information

Candidatar-se agora