Our department focuses on the cybersecurity and physical security applied specifically to operational technologies (OT) and, more precisely, to various industrial control systems (PLC, DCS, EFV, HMI, SCADA, protection relays, IED, RTU, etc.
as well as industrial protocols (Ethernet / IP, ProfiNet, Modbus TCP, DNP3, IEC 61850, etc.).
Your duties will include :
Developing policies, procedures and plans in all areas of cybersecurity and physical security.
Drafting documents (regulatory compliance, standards, policies, procedures, etc.), reports and specifications in accordance with client needs.
Applying best practices and international cybersecurity standards (NERC CIP, ISA / IEC 62443 and NIST.
Conducting cybersecurity and physical security vulnerability assessments to identify risks based on technology, organization or operations.
Implementing cybersecurity technology.
Providing awareness and training sessions on cybersecurity and physical security.
Managing and promoting business opportunities in cybersecurity and risk management?.
Seeking out and assessing technological solutions that fit with client needs and reflect market availability.
Staying up-to-date with industry trends in cybersecurity and physical security, available commercial technologies, regulations and best practices.
Assessing the degree of client satisfaction and maintaining close relations with the client.
Travelling to client sites, both to their offices and their operating sites.
Undergraduate engineering degree in automated production, electrical or electronic engineering, computer science or telecommunications, with 5 to 10 years of relevant experience.
Practical experience with industrial control systems and industrial routable protocols.
Experience with the security features of Windows operating systems (MSE, MBSA, Active Directory, WSUS, SCCM, etc.).
Experience performing hands-on commissioning tasks at client operating sites.
Experience with control network architecture, product testing and selecting vendors.
Experience with specialized cybersecurity tools and software, such as SIEM, IDS and IPS, scanning tools (Wireshark), access management and protection measures, such as advanced anti-
malware, firewall and malicious code software, machine learning for cyber defense and deep packet inspection.
Excellent verbal and written communication skills.
Asset : Experience developing policies, processes, procedures and plans.
Asset : Experience with IP industrial networks and devices such as managed switches, routers and firewalls.
Asset : Experience with various technological measures in cybersecurity detection and protection.
Asset : Experience responding to security incidents.
Asset : Experience with resilience planning and business continuity.
Asset : Experience in network intrusion testing in an industrial environment,
BBA is committed to promoting diversity and employment equity. We thank you for your interest in our firm. Please note that only those candidates selected will be contacted.