Principal Security Analyst, ICS (Remote - USA) - Mandiant Orlando, FL Bookmark Share Print 551 0 0

Listing Description

Job Description

Our ICS/OT Security Analysts combine industry-leading security technology and intelligence to deliver alert review, hunting, security architecture, tactical security posture recommendations, incident response, compromise assessments and threat modeling to clients within the ICS and OT space.  Our analysts augment the Managed Defense service to provide an additional layer of knowledge, guidance and protection for some of the most critical networks in the world.

The risk profile of controls systems is continually changing as OT and IT networks become increasingly interconnected.  The changing risk profile increases Mandiant’s need to assist clients in preventing, detecting, responding to, and recovering from cyber security incidents involving control systems.  Our investigations expose threats targeting critical infrastructure, transportation, manufacturing, and other control systems.  Our teams then develop innovative analytics for detection, support investigations, and incident response solutions.

What You Will Do:

• Monitor intelligence feeds to keep clients continually up to date on the threats that matter most to their sector
• Monitor the clients event stream looking for anomalies, incidents, vulnerabilities, and opportunities for security posture improvement.
• Develop new and innovative strategies and technology to more efficiently perform day to day responsibilities.
• Run and develop hunting use cases to discover threats and hygiene issues on clients’ networks.
• Work with clients to assess cybersecurity controls appropriate for ICS/OT environments, evolve those architectures to a more defensible posture, and improve the ability to resist, detect, respond to, and contain attacks
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences
• Effectively communicate investigative findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
• Provide guidance and support on ICS matters to the larger Managed Defense team

Minimum Qualifications:

• 3-5 years of hands-on experience in one, or more, of the following areas:
  • Network detection and hunting (preferred OT experience)
  • Log analytics detection and hunting
  • Industrial control systems architecture and improvement
  • Host and network forensics
  • Cybersecurity Architecture
  • Cybersecurity Programs, Audit, Compliance, and Strategy
• 2+ years of experience working with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, RTUs, HMI and Distributed Control Systems (DCS)
• 2+ years of experience with IT and OT network communication protocols (For example: TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, PROFINET, etc.)
• Working knowledge and understanding of various security control frameworks, including: IEC62443, NERC CIP, NIST

Desired Qualifications:

• Willingness to travel up to 10%
• Must be eligible to work in the US without sponsorship
• Ability to successfully interface with both internal and external clients
• Ability to document and explain technical details in a concise, understandable manner
• Self-motivated and results focused; ability to strengthen the team and its mission
• Global Industrial Cybersecurity Professional (GICSP), Certified SCADA Security Architect (CSSA), or Certified Information Systems Security Professional (CISSP) Certifications a plus 
• Experience with Industrial Wireless Communications, Software Defined Radio, and Embedded Device Testing a plus

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire.

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
 

Minimum Salary: 120,000.00. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms.

Benefits: Whether you are just starting your career, reaching a milestone, or gearing up for retirement, we offer plans and programs to keep you happy and healthy at any stage of life. We regularly evaluate our options to make sure they’ve got everything you need. Part of what makes Mandiant great is our diverse team, and we’ve made it our priority to provide benefits that support you on your individual journey at work and at home. Mandiant subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.