Informationen zur Anzeige:
Security Responsible in Projects (m/w/d)
Cs2 ITEC GmbH & Co. KG
Erlangen (DE)
Aktualität: 19.10.2024
Anzeigeninhalt:
19.10.2024, Cs2 ITEC GmbH & Co. KG
Erlangen (DE)
Security Responsible in Projects (m/w/d)
Aufgaben:
- A dedicated role and point of contact in customer projects to comply with customer cybersecurity requirements, regulations, laws and standards e.g. ISA/IEC 62443, EU-Directive 2022/2555 (NIS2), ISO/IEC 27000, BDEW Whitepaper 2.0, Critical Entities Resilience (CER) and to accommodate security requirements for specific customer solutions and products.
- Guiding the project through security activities defined in the respective processes
- Supporting security requirement evaluation and initiating necessary measures to ensure their fulfillment
- Acting as liaison between the project execution team and the customer regarding security topics
- Communicating company´s point-of-view on security of Industrial Automation and Control Systems (IACS) and any deviations or issues regarding conformance with security requirements required by the customer
- In case projects have a PPM who has also SRiP responsibility, technically advise and support the PPM-SRiP
- SRiPs shall have at least a functional reporting line to the Project Manager of the respective Project
Qualifikationen:
- B.Sc./M.Sc./Ph.D. in computer science, cybersecurity, cybernetics, electronics, or related field
- Extensive knowledge of industrial control systems, IT/OT architectures, network engineering and communication protocols
- Good knowledge of embedded systems and real-time control systems
- Adequate programming skills related to embedded systems (i.e., C, C++) and scripts (i.e., python, bash scripting)
- General understanding and knowledge of electrical systems. Any acquaintance with building automation systems and HVDC converter stations is an advantage
- Knowledge about Site Security Infrastructure, such as CCTV, access control and the like
- Significant experience in engineering and project execution
- Proactive, practical and have major problem-solving skills
- Any certification in the field of cybersecurity e.g. GSEC, CISSP, CISM, GICSP or similar is an advantage
- Experience with security standards and / or classification society rules such as IEC 62443, ISO 27000, NERC CIP, DNV rules, NIS2, UREs, etc. is an advantage
- Fluent in English written and oral, German is a plus
Standorte