Advisory Services Lead, Industrial OT Cybersecurity

job
  • WSP Global Inc.
Sorry the Job you are looking for is no Longer available

Job Summary
Location
Montreal ,QC
Job Type
Contract
Visa
Any Valid Visa
Salary
PayRate
Qualification
BCA
Experience
2Years - 10Years
Posted
11 Nov 2024
Share
Job Description
The Opportunity:
WSP  is currently seeking an Industrial / OT Cybersecurity Advisory Services Lead to join our Cybersecurity Practice in Canada.
This job function reports into the OT Cybersecurity Practice Director and is a delivery-focused role for WSP major infrastructure projects and professional services mandates.
This role aligns with WSP’s “Future Ready” vision to become the industry leader in digital engineering and advisory services.  WSP’s Industrial OT Cybersecurity Practice is formed of Engineers, Specialists, and Consultants who plan, design and implement strategies, frameworks and solutions to ensure the security of (CNI) critical national infrastructures. Our mission is to deliver digital infrastructures that are resilient and can be maintained as such throughout their life cycle. This is an opportunity to work with leading experts within the ICS/OT Cybersecurity Industry, build a cross-functional network of professionals, work in a high-performing, flexible, fun and inclusive environment.
Why choose WSP?
We value and are committed to upholding a culture of  inclusion  and  belonging
Our  Flexible Work Policy – we recognize the importance of balance in our lives and encourage you to prioritize the balance in yours. We will support you on and off the job so you can be fully present in both your work and home lives.
A  Canadian  success story - we're  proud  to wear the red and white of this beautiful country and show the world what Canada has to offer.
Enhance  the world around you - from the environment to the highways, to the buildings and the terrain, WSP is the fabric of Canada.
Outstanding  career opportunities - we're growing and pushing ourselves every day to be greater than yesterday - we're open to  your  ideas and trying  new  things.
A phenomenal  collaborative  culture and a workforce filled with genuinely  good people  who are doing humbly important work. Come find out for yourself what it's like to be a part of our journey.
We offer attractive pay, flexible work options, a great corporate culture, comprehensive and employee-focused benefits including virtual healthcare and a wellness platform as well as great savings programs, and a clear vision for the future.
# WeAreWSP
What you can expect to do here:
Provide cybersecurity expertise and technical leadership for Industrial Control Systems (ICS) and Operational Technology (OT) environments – for the purpose of increasing Cyber-Resilience.
Manage client relationships and advise clients on recommended actions relating to active projects and assignments in the digital infrastructure domain – to seize opportunities or mitigate risks.
Lead the planning of all cyber security activities and resources needed for major infrastructure projects and / or focused client mandates, spanning the following aspects: early feasibility studies and strategic advisory, requirements management, design, procurement, implementation, testing and commissioning, into operations & maintenance.
Input to the definition of KPIs by which the project Cybersecurity frameworks will be measured and continually seek to improve Cybersecurity discipline framework and toolsets through real-world deployment and application.
Oversight and execution of WSP’s Cybersecurity project plans and methodologies, to ensure the cyber resilience of the digital infrastructure through the following workstreams: governance & planning, tools and technologies, policies and procedures, and people & expertise.
Coordinate and oversee the execution of cyber security threat, vulnerability, and risk assessments by identifying all the critical assets, network connectivity and threat vectors, to define mitigation options and residual risk.
Derive, cascade, and clarify cyber security requirements to the suppliers of digital technology and controls systems, and engage in the procurement activities to manage cyber risk in the supply chain.
Perform, and lead project teams to perform, the necessary analysis to provide all the required evidence to support the project requirements and verification of security controls through the V-cycle assurance process.
Liaise with engineering design, project management and construction teams to ensure the cyber security activities and requirements are being implemented by the project team and by the suppliers.
Review cyber security submissions from suppliers, and designers, and provide detailed technical comments.
Plan, prepare and implement a cyber security testing strategy to validate the resilience of the digital infrastructure Vs. external and internal threats.
Deliver on critical path project activities and deliverables in allocated timescales to meet overall project deadlines.
Identify opportunities for new work and contribute to the development of bid materials and proposal exercises to support winning of new work.
Contribute to the continuous development program of WSP’s OT Cybersecurity capabilities and client solutions through the use of accelerators, novel methodologies, digital tools and technologies
What you’ll bring to WSP:
Technical qualifications, experience, and skills:
Networking, Telecommunications or Cybersecurity Engineering, IT and Computer Science degree or equivalent
6 years minimum experience in the application of one or more of the following technical areas: Telecommunications / Network Technology
Automation / SCADA / Control Systems
Distributed Control Systems / Operational Technology
Critical infrastructure
6 years minimum experience in the following professional services capacities: Advisory and Consulting domain experience, in pre-sales and post-sales capacities – is required
The candidate will possess in-depth experience in the Industrial Cyber Security field with most recent experience having come from any of the following areas: Infrastructure / Engineering Project Program definition and execution
Advisory and consulting mandate scoping and delivery
Vulnerability Scanning and Penetration Testing
Application security
Malware Reverse Engineering
Threat Intelligence
Security Architecture and Secure-by-Design process
Operational Technology/Industrial Control Systems Security
Telecommunications and Network Security
System or Network administration in a complex multi-national network
Experience of bridging and managing the technical, schedule and commercial constraints at a project level in relation to OT Cybersecurity
Applied knowledge of NIST guidelines, ISA/IEC 62443 standards suite, and ISO 270001 cyber security frameworks
Fundamental understanding of IT and OT network communication protocols (e.g. TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, PROFINET, etc.)
IEC 62443, CISSP, CompTIA Security+, or SANS GICSP valid certification is required
Interpersonal and soft skills:
Excellent communication skills, both written and verbal.
Proficiency in Microsoft Office, including Excel, Word, Visio, Project and Outlook.
The ability to work effectively remotely within an extended team.
The ability to understand responsibilities and willingness to be accountable of the work delivered.
Ability to communicate complex Engineering and Industrial Cybersecurity concepts to non-technical decision makers
Ability to work on multiple mandates simultaneously.
What sets you apart:
Experience in managing technical teams and overseeing the workstreams of others at a project level.
Experience in multiple Industrial Control System fields such as: manufacturing, transportation, energy, utilities, telecommunications and willing to go the “extra mile” to learn more about industrial digital infrastructures and their underlying cybersecurity.
Previous experience of creating new services, products or frameworks for clients
Major Infrastructure Projects discipline lead / Project Management – digital infrastructure – is an asset
Professional Engineer (PEng), or European equivalent: CEng (Chartered Engineer) certified and / or working towards these accreditations.
Experience working as a Senior Consultant or Advisor to clients, taking into consideration budgetary and inter-disciplinary constraints.
Experience in Project or Program Management of Cybersecurity or Networking assignments.
Bilingual French / English, an asset
#J-18808-Ljbffr