Lead Cyber Security Engineer (ICS)

Job description / Role

Title:
Lead Cyber Security Engineer (ICS)

Overall Summary Lead Control Systems Engineer with proven experience in the design of Industrial Control Systems (ICS). Premilitary responsibility to design Cyber Security procedures and controls for all Automation systems and process plants. Knowledge in the established Cyber security controls for various domains of OT Cyber security are implemented by all the Automation groups. He shall continuously monitor the latest Cyber solutions and keep them updated with the latest security updates and threat feeds. He shall continuously monitor the control system for potential cyber vulnerabilities and risk assessment and implement the vulnerability management program. Actively take part in risk analysis of the implemented Cyber controls on a regular basis and execute risk reduction strategies. Required Knowledge on Saudi Aramco Cyber security and network related standards, process Automation Network (PAN), Industrial control systems (ICS) and related cyber security concepts (Policies, Standards, and Procedures related to ICS Cybersecurity Supply Chain Management). Minimum 15 years' experience in Oil & Gas, Hydrocarbons, and/or Infrastructure industries. Excellent communication and presentation skills needed. Duties and Responsibilities:
- A highly qualified control systems engineer who manages design, engineering, procurement, integration, and testing of the ICS systems (DCS, ESD, RMPS, CCS, PAN, DAHS, etc.), which collectively form an integrated Process Control System, needed for automation projects.
- Responsible for design, specification, sizing and equipment needed for control and monitoring of process units and utilities (BPCS, Safety Systems, SIS, SIL, Analyzers, PCS Communication, field instrumentation, valves, advanced controls systems, etc.)
- Lead site evaluation (site survey) teams for revamp and brown-field projects as needed.
- Required Knowledge on international standards like IEEE 802.3, IEC62443-3-3, IEC 62443-1-1
- Develop/check basis of design documents.
- Scoping of projects, including control systems deliverables
- Develop/check work plans for control systems team.
- Develop/check control systems deliverables, Validate the vendor NMR documents and vendor proposed design that complying the latest SA and International standards.
- Estimate work hours.
- Provide technical leadership and guidance to the project team, including the Clients.
- Responsible for design integrity of Control Systems engineering scope, performance of assigned staff, and on-schedule delivery of the work within budget.
- Lead technical presentations to Clients and their representatives as needed.
- Serve as technical resource to Control Systems engineers and related Discipline engineers and designers.
- Provide technical leadership to ensure that applicable procedures and standards (client, KBR and international) are correctly applied.
Key Interactions:
- Project Management
- Discipline Managers
- Vendors (technical)
- Client

Requirements

Qualifications & Years of Experience:

- Minimum Bachelor of Science in Control Systems or related field, and a minimum of 15 years of relevant engineering experience especially in control systems design, Process control networks and cyber security requirements for ICS design.

Key Skills & Technical Competencies:
- Sound knowledge of basic engineering principles, control systems and instrumentation technology, networking, and safety devices for process automation networks.
- Familiarity with key International, SA engineering standards and procedures is desirable.
- Direct and relevant experience in oil/gas / petrochemical plants / Fertilizer plants / with OEMs.
- Working knowledge with various Automation Systems (Honeywell, Triconex, Siemens, ABB, Allen Bradley, GE Mark VI & VIe).
- Required Knowledge on configuration of Layer 2 & 3 Switches, Firewall, and layers related to Process Automation Network (PANs).
- Required Knowledge on configuration procedure for ICS nodes and servers like NMS (Network management system), NTP (network time protocol), OPC, DC (Domain controller), Anti-Virus, ALMS (alarm management system), windows patch management, DAHS (data acquisition and historization system), DMZ (Demilitarized zone), and PI servers.
- Proven successful experience in Industrial Automation Security domain.
- Certification in Network Management (like CCNA) and Cyber Security (like ICS/SCADA Cybersecurity, Global Industrial Cybersecurity Professional (GICSP), Certified SCADA Security Architect (CSSA), Certified Information Systems Security Professional (CISSP) Certification) is preferred.
- Ability to handle responsibility and complete projects within schedule.
- Sound Knowledge for development of ICS scope of work and services needed from ICS vendors. Must have experience in finalization of ICS TBE and finalization of ICS contract agreement.
- Must be proficient in English, oral and written.
- Excellent technical presentation skills needed.

About the Company

We deliver science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 28,000 people performing diverse, complex and mission critical roles in 34 countries.

KBR is proud to work with its customers across the globe to provide technology, value-added services, and long-term operations and maintenance services to ensure consistent delivery with predictable results. At KBR, We Deliver.