Industrial Control Systems (ICS) Security Engineer

Vintti bridges the staffing gap for US businesses with a unique focus on time zone compatibility. We source top talent from Latin America, offering companies access to professionals who are available during standard US working hours. This alignment eliminates the need for off-hour communications and allows for integrated teamwork, as if all team members were in the same office.

An Industrial Control Systems (ICS) Security Engineer is responsible for safeguarding critical industrial systems and networks against cyber threats. This role involves designing, implementing, and maintaining security measures specifically tailored for ICS environments to ensure the integrity, availability, and confidentiality of automation and control systems. The engineer collaborates closely with IT and operational technology teams to identify vulnerabilities, develop security protocols, and respond to security incidents. They also stay updated on evolving threats and work to mitigate risks in compliance with industry standards and regulations.

- Bachelor's degree in Cybersecurity, Computer Science, Engineering, or a related field
- Minimum of 5 years of experience in cybersecurity with a focus on ICS environments
- Strong knowledge of ICS/SCADA systems and their unique security challenges
- Proficiency in network security monitoring and incident response within ICS environments
- Experience with security frameworks and standards relevant to ICS such as NERC CIP, ISA/IEC 62443, or NIST
- Hands-on experience with ICS-specific firewalls, intrusion detection/prevention systems, and other security tools
- Proven track record of conducting vulnerability assessments and risk analyses on ICS components
- Knowledge of industrial communication protocols such as Modbus, DNP3, and OPC
- Experience with patch management and updating ICS software/firmware
- Understanding of secure ICS architecture design principles
- Strong analytical and problem-solving skills
- Ability to provide training and guidance on ICS security best practices
- Experience with performing security audits and ensuring compliance with industry regulations
- Excellent written and verbal communication skills
- Ability to work collaboratively with control system engineers and other stakeholders
- Familiarity with access control methods and user authentication/authorization in ICS environments
- Previous experience in developing and implementing disaster recovery and business continuity plans for ICS
- Ability to stay current with the latest ICS threats, vulnerabilities, and security technologies
- Relevant certifications such as CISSP, GICSP, CEH, or similar are highly desirable
- Strong documentation skills for incident reporting and creating security policies/procedures
- Competence in liaising with external vendors and service providers regarding security requirements

- Monitor network traffic within ICS environments for anomalies and suspicious activities
- Analyze security incidents and perform root cause analysis
- Develop and implement ICS-specific security policies and procedures
- Conduct regular vulnerability assessments and risk analyses on ICS systems and components
- Configure and manage ICS firewalls, intrusion detection/prevention systems, and other security devices
- Coordinate and execute incident response plans for security breaches in ICS environments
- Collaborate with control system engineers to design secure ICS architectures
- Integrate security tools and protocols into existing ICS and SCADA systems
- Update and patch ICS software and firmware to mitigate security vulnerabilities
- Provide guidance and training to engineering staff on ICS security best practices
- Conduct security audits and compliance checks to ensure adherence to industry standards and regulations
- Implement and manage access controls for proper user authentication and authorization within ICS
- Document security incidents and develop corrective action plans
- Participate in the creation and implementation of disaster recovery and business continuity plans for ICS
- Review and approve changes to ICS configurations and network setups
- Stay updated on the latest ICS threats, vulnerabilities, and security technologies
- Develop and test cybersecurity policies and procedures specific to ICS environments
- Liaise with external vendors and service providers to ensure security requirements are met

The ideal candidate for the Industrial Control Systems (ICS) Security Engineer role is a highly analytical and detail-oriented professional with at least 5 years of focused experience in cybersecurity, particularly within ICS environments. They possess a strong educational background with a Bachelor's degree in Cybersecurity, Computer Science, Engineering, or a related field, and are well-versed in ICS/SCADA systems and their unique security challenges. This candidate demonstrates proficiency in network security monitoring, incident response, and conducting vulnerability assessments, alongside hands-on experience with ICS-specific firewalls, intrusion detection/prevention systems, and patch management. They are knowledgeable about industrial communication protocols like Modbus, DNP3, and OPC, and are adept at designing secure ICS architectures while staying current with industry standards such as NERC CIP, ISA/IEC 62443, or NIST. With strong problem-solving skills, the ability to think critically, and a practical mindset, they successfully implement effective security measures and provide comprehensive training and guidance on ICS security best practices. Their excellent communication and interpersonal skills enable them to collaborate efficiently with control system engineers and various stakeholders, conveying complex technical concepts to non-technical audiences clearly. This proactive, self-motivated candidate is passionate about cybersecurity, constantly updates their knowledge about the latest threats and technologies, and maintains the highest ethical standards and integrity. Their strong organizational and multitasking abilities, combined with meticulous documentation and reporting, ensure that they manage and mitigate risks effectively while fostering a culture of security awareness. Holding relevant certifications such as CISSP, GICSP, or CEH, they exhibit strong leadership and mentorship qualities, are innovative in identifying potential security improvements, and remain committed to achieving measurable security goals in a fast-paced, high-pressure environment.

- Monitor and analyze network traffic for anomalies and suspicious activities within ICS environments
- Develop, implement, and maintain security policies and procedures specific to ICS
- Perform regular vulnerability assessments and risk analyses on ICS components
- Configure and manage ICS-specific firewalls, intrusion detection/prevention systems, and other security devices
- Coordinate and conduct incident response efforts for ICS-related security breaches
- Collaborate with control system engineers to design secure ICS architectures
- Integrate security tools and protocols into existing ICS and SCADA systems
- Update and patch ICS software and firmware to mitigate security vulnerabilities
- Provide guidance and training to engineering staff on ICS security best practices
- Conduct security audits and compliance checks to ensure adherence to industry standards and regulations
- Implement and manage access controls to ensure proper user authentication and authorization within ICS environments
- Document security incidents, including root cause analysis and corrective action plans
- Participate in the design and implementation of disaster recovery and business continuity plans for ICS
- Review and approve changes to ICS configurations and network setups to ensure they do not compromise security
- Stay updated on the latest ICS threats, vulnerabilities, and security technologies
- Develop and test cybersecurity policies and procedures specific to ICS environments
- Liaise with external vendors and service providers to ensure security requirements are met

- Highly analytical and detail-oriented
- Proactive and self-motivated with a strong sense of initiative
- Strong problem-solving skills and the ability to think critically
- Excellent communication and interpersonal skills
- Collaborative with the ability to work well in multidisciplinary teams
- Strong organizational and multitasking abilities
- Resilient and adaptable in fast-paced, high-pressure environments
- Passionate about cybersecurity and staying updated with the latest threats and technologies
- Strong ethical standards and integrity
- Ability to maintain confidentiality of sensitive information
- Eager to continuously learn and improve skills
- Strong technical aptitude and hands-on experience with ICS security tools
- Practical mindset with a focus on implementing effective security measures
- Ability to clearly convey complex technical concepts to non-technical stakeholders
- Meticulous in documentation and reporting
- Strong leadership and mentorship capabilities
- Committed to fostering a culture of security awareness and best practices
- Innovative and forward-thinking in identifying potential security improvements
- Result-driven with a focus on achieving measurable security goals.

- Competitive salary range (specific range depending on experience)
- Comprehensive health, dental, and vision insurance
- Retirement savings plan with company match
- Generous paid time off (PTO) and holiday schedule
- Flexible work hours and possibility of remote work
- Professional development opportunities and training budget
- Tuition reimbursement for relevant education/certifications
- Opportunities for career advancement and growth within the company
- Employee wellness programs and mental health support
- Onsite gym and fitness center access (if applicable)
- Work-life balance initiatives and family-friendly policies
- Company-sponsored social events and team-building activities
- Employee assistance programs (EAP)
- Life and disability insurance
- Performance-based bonuses and incentives
- Recognition and rewards programs for achievements
- Cutting-edge tools and resources for professional use
- Collaborative and innovative work environment
- Access to industry conferences and workshops
- Company-sponsored memberships in professional organizations