IT Security Administrator, BRS - Osceola, United States - Big River Steel

    Big River Steel
    Big River Steel Osceola, United States

    1 month ago

    Default job background
    Description
    Job Description

    U. S. Steel is committed to fostering an inclusive workplace culture and celebrate the diversity of our employees. A Cybersecurity Engineer is responsible for contributing to the analysis, design, implementation, and support of the company's cybersecurity requirements in both the IT and OT environments. This includes working with and attending plant operations and process control meetings acting as a liaison between operations and corporate cybersecurity team to support plant OT projects and identify cybersecurity related needs. This role will also have a technical requirement to facilitate changes to critical network security equipment including firewalls, remote access tools, and other security tools to reduce risk and implement additional cybersecurity controls to the environment. In addition, the Cybersecurity Engineer will have responsibility for investigating information security incidents with the assistance of the corporate cybersecurity team. Qualified candidates must be able to lead, motivate, and participate as a team player and have a strong understanding of technology including experience securing IT and OT systems. Candidates will be considered based on a combination of education, certifications, and relevant experience. Experience with operational technologies and process safety is a plus.

    Duties and Responsibilities
    • Ensure Safety, Environmental, Quality requirements and "where applicable" ResponsibleSteel requirements are followed.
    • Dotted line responsibility to the plant manager for all plant related cybersecurity initiatives.
    • Work from designated plant locations, attend plant operations meetings, plant processes (i.e., process control) meetings, and act as a liaison between operations and corporate Cybersecurity team.
    • Work closely with process control system SMEs and operational staff to design, implement, and support the security of OT networked systems.
    • Focus on vulnerability management of OT environments by applying, recommending, and tracking security updates where applicable under the purview of the local process control team.
    • Support plant OT project reviews and identify cybersecurity related needs.
    • Participate in preparation, review, and maintenance of documents, policies, and standards governing the security operations for OT equipment and networks.
    • Facilitate maintenance of accurate inventories of OT environments as well as completion of OT system boundary security assessments.
    • Identify and assist in remediation of risk for any non-compliant network or device (i. e., wireless, IoT, etc.)
    • Assist in the creation, review, and maintenance of response and recovery plans for OT environments.
    • Assist to communicate, evaluate, and prioritize OT risk.
    • Assist with the proliferation of cyber procedures and implementation of the NIST framework.
    • Support corporate wide project initiatives and Cybersecurity Specialists at all locations.
    • Configure, manage, and maintain a complex environment of next generation firewalls.
    • Perform complex troubleshooting of network and firewall issues.
    • Assist with configuring and maintaining remote access tools for both internal employees and third-party users.
    • Assist with identifying, configuring, and maintaining other cybersecurity tools to be used across the corporation.
    • Perform incident response activities for cybersecurity alerts generated by security tools or the security operations center in a timely manner.
    Qualifications
    • All qualified candidates will be considered based on a combination of education, certifications, and relevant experience.
    • Demonstrated ability to lead, motivate, and participate as a team player.
    • Strong understanding of technology including experience securing IT or OT systems.
    • In depth understanding of operating systems, network/system architecture, and IT architecture design.
    • Experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS).
    • Understanding of IT and OT network communication protocols (including TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET) and ability to perform packet analysis.
    • Process safety background is a plus.
    • Minimum 5 years of technical IT or OT experience
    • Experience in network and systems security, not only a key understanding of overall concepts, but also the ability to implement policies, processes, and develop solutions to network and security problems.
    • Experience with configuring and troubleshooting advanced features of next generation type firewalls.
    • Ability to troubleshoot complex problems both as a team and independently by critical and outside the box thinking.
    • Experience conducting log analysis with a SIEM tool.
    • Strong ability to multi-task and adapt to changing priorities.
    • Cybersecurity related certifications a plus.
    Working Conditions and Physical Requirements
    • This position requires the ability to work in an office setting with occasional tasks in the mill, which could
    • typically involve extreme environments from hot to cold. This position can require long hours, weekend and
    • holiday coverage to support routine responsibilities.
    Supervisory Responsibility
    • This position does not supervise others.
    Company Overview

    Since 1901, U. S. Steel has been a recognized leader in steel production. Today, as the first North American steel company to have declared a 2050 net-zero greenhouse gas emissions goal, we remain as innovative as ever, leading transformation across our industry while continuing to make products for everyday life - from industries as far ranging as automotive, construction, containers and packaging, appliances, and energy.

    We show pride in our communities with community partnerships, corporate charitable contributions, company-sponsored employee volunteer initiatives, leadership training, and much more. And of course, we have a steadfast commitment to safety first in our workplaces and respect for our employees, who are United by Steel.

    We are honored to have earned accolades and awards from well-regarded organizations, including the following:
    • Newsweek's Top 100 Most Loved Workplaces 2021, '22, '23
    • Human Rights Campaign Foundation's Equality 100 Award 2020, '21,'22, '23
    • Disability:IN's Best Places to Work for Disability Inclusion 2021, '22, '23
    • Ethisphere's World's Most Ethical Companies 2022, '23
    • Military Times' Best for Vets: Employers 2023
    • Mansfield Certification for progressing Diversity, Equality, and Inclusion in Legal Department: 2023
    Conducting business with integrity and with the highest ethical values has underpinned U. S. Steel's success for over 100 years, and it remains critical to our company's success in the future. U. S. Steel is an Equal Opportunity Employer. It is our policy to provide equal employment opportunity (EEO) according to job qualifications without discrimination on the basis of race, color, religion, ancestry, national origin, age, genetics, sexual orientation, sex, gender identity, disability status or status as a protected Veteran or any other legally protected group status. (California residents may visit regarding collection of personal information and U. S. Steel's privacy practices.)

    Competency Summary

    At U. S. Steel all employees are expected to display the following core competencies every day to advance corporate, team and individual goals:

    Think: Think Critically and Drive Change
    Lead: Develop Talent and Collaborate
    Do: Empower Performance and Deliver Results