OT Cyber Security Consultant

Edmonton, Canada

About Dexcent
Founded in 2006, Dexcent Inc. (Dexcent) is an engineering consulting firm that provides a range of specialized solutions for clients in a variety of industries throughout the world. Our professionals have modernized IT and OT engineering methodologies into comprehensive solutions, specializing in information analytics, cyber-security, infrastructure, and control systems engineering. As such, we pride ourselves on truly transforming industrial operations to optimize business performance and deliver bottom-line results. 

Job Details

The OT Cyber Security Consultant engages with clients to identify needs, compliance issues, and requirements for Cyber Security.  They provide technical expertise, oversight on projects, and lead and mentor project teams. They regularly engage with clients to assess the current state of their Cyber Security program and architecture, conduct gap analysis, and provide expertise and recommendations on applicable Cyber Security industry standards, frameworks, methodologies and tools.

This position may be based out of Edmonton, AB or Calgary, AB.  Work will primarily be remote, with visits to client sites in person and travel as needed.

Position Duties and Responsibilities:

  • Consult with clients to advance OT Cyber Security practices and controls.

  • Guide and support clients with planning, ICS infrastructure design, and documentation activities. 

  • Engage with clients to confirm project requirements against specifications, and best practices and ensure completion of projects.

  • Participate in technical sales activities, prepare proposals and participate in interviews and presentations.

  • Evaluate client needs, identify Cyber Security technology solution options, and present recommendations, effectively communicating the value proposition to all decision makers and influencers.

  • Review Cyber Security projects/programs for reasonability and accuracy.

  • Lead Cyber Security project teams to conduct threat management, assess and enhance network security, conduct assessments/reviews, and develop governance and risk management standards.

  • Review, enhance and implement network segmentation principles, access control mechanisms, intrusion detection and response systems, threat monitoring and reporting.

  • Lead Cyber Security assessments/reviews and implementation of recommendations.

  • Lead vulnerability assessments and advise on remediation plans (research and patching).

  • Develop Cyber Security (IT & OT) and related policies and procedures for clients and support the implementation process.

  • Prepare documentation of systems, processes, and interdependencies.

  • Review network architecture design.

  • Review various sources of documentation, existing design artifacts, management of change (MOC) records, asset management systems of record, logs, and asset monitoring to confirm how the client environment has been configured.

  • Prepare bulk updates to asset management systems according to SME direction for client execution.

  • Provide technical evaluation of supplier proposals and advise or accept as fit for purpose supplied equipment or services.

  • Assist clients with coordinating Cyber Security activities across multiple projects, divisions and systems.

  • Provide high-level KPI metrics to confirm asset count and accuracy of the information within OT systems.

  • Provide quality control (QC) testing support against design, installation, commissioning, documentation and change management activities.

  • Develop and comply with OT Cyber Security policies and industry standards.

  • Maintain careful and diligent compliance with all relevant change management procedures.

 

Candidate Qualifications:

  • A Bachelor’s Degree or a Master’s Degree in Computer Engineering, Electrical/Electronics Engineering, Computer Science, or related discipline, or equivalent experience.

  • Minimum 7+ years in a consultative Cyber Security related role in IT or OT environments. 

  • Experience leading IT/OT projects and coaching/mentoring professionals.

  • Experience with: Industrial Control Systems (ICS)/industrial automation and control systems (IACS), supervisory control and data acquisition (SCADA) systems, process control systems (PCS), and/or distributed control systems (DCS) within the Cyber Security realm.

  • Experience with Cyber Security incident management processes.

  • Certifications that would be an asset including:  Global Industrial Cyber Security Professional (GICSP), Certified Information Systems Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Systems Management (CISM).

  • ICS field consulting experience is an asset.

  • SANS, or equivalent security training is desirable.

  • Ability to travel in North America.

  • Expert understanding of industrial networking concepts and the Purdue Model.

  • Working knowledge of multiple operating systems, security policies and terminology.

  • Knowledgeable of industrial Cyber Security frameworks including but not limited to NERC CIP, IAC/ISA 62443, NIST 800-82, TSA Pipeline Guidelines, etc.

  • Working knowledge related to Real-Time SCADA Systems (OASyS, WonderWare, etc.), DCS, and Historians (such as OSI’s PI). 

  • Familiarity with industrial hardware including but not limited to programmable logic controllers (PLCs) / programmable automation controllers (PACs), human machine interfaces (HMIs), intelligent electronic devices (IEDs), remote terminal units (RTUs), etc.

  • Expertise in Cyber Security in IT and OT environments.

  • Familiarity with Security Operations Center (SOC) and SOC capabilities.

  • Experienced with risk assessment methodologies and concepts.

  • A strong leader and mentor who is dedicated to building effective, engaged, and productive teams.

  • Skilled in preparing and presenting highly technical information in a format relatable to all audiences from end-users to the C-suite.

  • Highly capable project manager with proven ability to manage scope, budget, timeline, quality and safety.

  • Excellent written and verbal communication and listening skills, enabling effective communication with clients, employees, vendors, and owners.

  • Strong customer service, organization, and time management skills.

  • Excellent troubleshooting and analytical skills coupled with ability to translate customer needs into technical solutions and recommendations.


What We Offer


We recognize that people are our most important asset. We appreciate the diverse experience, knowledge, creativity, and personality that each person brings to our organization, our culture, and our success.

Benefits

Training

Health Spending Account

Profit Sharing