IT Security Engineer

JOB OBJECTIVE

CDS Asia provides a range of cybersecurity services and solutions to our regional clients with a strong focus on Operational Technology. Our ambition is to scale up our existing business and increase our footprint in the region with a refreshed strategy and mandate to leverage our global capability and win new business in our core markets.

We are actively seeking a Senior Cybersecurity Engineer to take a leading role in design, development and implementation of IT/OT cybersecurity solutions within our existing install base.

The role will require someone that this is a problem solver, determined and enthusiastic. They will bring experience of implementing a wide variety of cybersecurity products and solutions within large complex system development. They will have the ability to apply cybersecurity and principles to organizational requirements and be able to identify and remediate critical infrastructure systems that were designed without system security considerations.

The successful Candidate will enjoy a rewarding role full of new challenges and be part of a company that provides highly complex solutions in the most critical operational environments where robust safety and resilience standards are applied.

ROLES & RESPONSIBILITIES

• Define overall security solution strategies based on customer requirements.
• Work with Thales engineering teams to integrate cybersecurity solutions into existing and new platforms.
• Act as the single point of contact for customer security queries.
• Contribute to the management of the risks and/or opportunities during the project implementation phase, including managing subcontractors and partners
• Analyse design constraints, analyse trade-offs and detailed system and security design, and consider life cycle support.
• Build, test, and modify product prototypes using working models or theoretical models.
• Design and develop cybersecurity or cybersecurity-enabled solutions.
• Design or integrate appropriate cybersecurity capabilities into overall system designs.
• Develop and execute system testing and validation procedures and documentation.
• Develop architectures or system components consistent with technical specifications.
• Identify and direct the remediation of technical problems encountered during testing and implementation of new systems.
• Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system and ensure that recommended products are in compliance with evaluation and validation requirements.
• Perform risk analysis whenever an application or system undergoes a major change.
• Provide guidelines for implementing developed systems to customers or installation teams.
• Store, retrieve, and manipulate data for analysis of system capabilities and requirements.
• Utilize models and simulations to analyse or predict system performance under different operating conditions.
• Implement and integrate various system development life cycle methodologies into development environment.
• Conduct a market analysis to identify, assess, and recommend commercial, off-the-shelf, and open source products for use within a system and ensure recommended products are in compliance with evaluation and validation requirements.
• Design and develop system administration and management functionality for privileged access users.
• Design, implement, test, and evaluate secure interfaces between information systems, physical systems, and/or embedded technologies.
• Ensure that design and development activities are properly documented and updated as necessary.
• Design to security requirements to ensure requirements are met for all systems and/or applications.
• Develop detailed design documentation for component and interface specifications to support system design and development.
• Implement designs for new or existing system(s).
• Perform security reviews and identify security gaps in architecture.
• Provide input to implementation plans, standard operating procedures, maintenance documentation, and maintenance training materials
• Provide support to test and evaluation activities.
• Trace system requirements to design components and perform gap analysis.
• Analyse user needs and requirements to plan and conduct system development.
• Develop designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networked operations.
• Collaborate on cybersecurity designs to meet specific operational needs and environmental factors (e.g., access controls, automated applications, networked operations, high integrity and availability requirements, multilevel security/processing of multiple classification levels, and processing Sensitive Compartmented Information).

WORK EXPERIENCE REQUIREMENTS

• Minimum of 8 years’ experience of security engineering
• Strong critical thinking and problem-solving skills and a passion for information security
• Experience of working with internal experts/external vendors to resolve technical issues independently
• Fluent communicator in both written and spoken English;
• Previous consulting or professional services experience
• Knowledge of Aviation, Government, Defence and Transportation sectors
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• Knowledge of regional laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
• Knowledge of cyber threats and vulnerabilities.
• Knowledge of OT security architecture.
• Knowledge of industrial evaluation and validation requirements.
• Knowledge of installation, integration, and optimization of system components.
• Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• Knowledge of information security systems engineering principles.
• Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
• Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of various operating systems.
• Knowledge of secure configuration management techniques.
• Knowledge of software development and engineering models (e.g., Agile, Lean, Waterfall Model, Spiral Model).
• Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design.
• Knowledge of system life cycle management principles, including software security and usability.
• Knowledge of Supply Chain Risk Management Practices
• Knowledge of critical infrastructure systems with information communication technology that were designed without system security considerations.
• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defence-in-depth).
• Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
• Knowledge of countermeasure design for identified security risks.

QUALIFICATION, CERTIFICATION & EDUCATIONAL REQUIREMENTS

• Degree in Information Security (preferred) or Information Technology or Computer Science
• Certified Information Systems Security Professional (CISSP), or
• Certified Information Security Manager (CISM)

Preferred

• Information Security Masters degree from either:U.S. National Centres of Academic Excellence in Cyber Defence; or, those certified by U.K. National Cyber Security Centre
  
• CREST Registered Technical Security Architect (CRTSA); or
• Information Systems Security Architecture Professional (CISSP-ISSAP).