Responsibilities:
- Design and implement an intrusion detection system (IDS) specifically for monitoring and securing the IT-OT interfaces within power grid environments.
- Capture, decode, and analyze network traffic in the IT-OT domain of the ICS to detect and respond to potential security threats.
- Develop and refine algorithms and methods for detecting anomalous behavior or unauthorized access within the network.
- Collaborate with cybersecurity and network teams to integrate the IDS into the existing security infrastructure and workflows.
- Conduct continuous monitoring and periodic testing of the IDS to ensure its effectiveness and to update its capabilities in response to emerging threats.
- Prepare and maintain documentation related to the IDS, including system design, configuration, and operational procedures.
- Stay updated with the latest cybersecurity trends and advancements in intrusion detection technologies to recommend improvements to the IDS.
Qualifications & Experience:
- Bachelor’s or Master’s degree in Engineering, Computer Science, Information Technology, or related fields.
- Proficient in Python programming with demonstrated experience in developing and maintaining software solutions.
- Solid understanding of computer networks, including network architectures, protocols, and security measures.
- Experience with network analysis tools, with a preference for candidates familiar with Wireshark.
- Knowledge of Industrial Control System (ICS) protocols such as IEC 61850, MODBUS, and Ethernet/IP (ENIP) is highly beneficial.
Skills and Abilities:
- Strong analytical and problem-solving skills with a keen attention to detail.
- Ability to work independently and in a team environment, managing multiple priorities with minimal supervision.
- A proactive approach to identifying risks and implementing preventative measures.
