No more applications are being accepted for this job
- Ensure Safety, Environmental, Quality requirements and "where applicable" ResponsibleSteel requirements are followed.
- Dotted line responsibility to the plant manager for all plant related cybersecurity initiatives.
- Work from designated plant locations, attend plant operations meetings, plant processes (i.e., process control) meetings, and act as a liaison between operations and corporate Cybersecurity team.
- Work closely with process control system SMEs and operational staff to design, implement, and support the security of OT networked systems.
- Focus on vulnerability management of OT environments by applying, recommending, and tracking security updates where applicable under the purview of the local process control team.
- Support plant OT project reviews and identify cybersecurity related needs.
- Participate in preparation, review, and maintenance of documents, policies, and standards governing the security operations for OT equipment and networks.
- Facilitate maintenance of accurate inventories of OT environments as well as completion of OT system boundary security assessments.
- Identify and assist in remediation of risk for any non-compliant network or device (i. e., wireless, IoT, etc.)
- Assist in the creation, review, and maintenance of response and recovery plans for OT environments.
- Assist to communicate, evaluate, and prioritize OT risk.
- Assist with the proliferation of cyber procedures and implementation of the NIST framework.
- Support corporate wide project initiatives and Cybersecurity Specialists at all locations.
- Configure, manage, and maintain a complex environment of next generation firewalls.
- Perform complex troubleshooting of network and firewall issues.
- Assist with configuring and maintaining remote access tools for both internal employees and third-party users.
- Assist with identifying, configuring, and maintaining other cybersecurity tools to be used across the corporation.
- Perform incident response activities for cybersecurity alerts generated by security tools or the security operations center in a timely manner.
- All qualified candidates will be considered based on a combination of education, certifications, and relevant experience.
- Demonstrated ability to lead, motivate, and participate as a team player.
- Strong understanding of technology including experience securing IT or OT systems.
- In depth understanding of operating systems, network/system architecture, and IT architecture design.
- Experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS).
- Understanding of IT and OT network communication protocols (including TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET) and ability to perform packet analysis.
- Process safety background is a plus.
- Minimum 5 years of technical IT or OT experience
- Experience in network and systems security, not only a key understanding of overall concepts, but also the ability to implement policies, processes, and develop solutions to network and security problems.
- Experience with configuring and troubleshooting advanced features of next generation type firewalls.
- Ability to troubleshoot complex problems both as a team and independently by critical and outside the box thinking.
- Experience conducting log analysis with a SIEM tool.
- Strong ability to multi-task and adapt to changing priorities.
- Cybersecurity related certifications a plus.
- This position requires the ability to work in an office setting with occasional tasks in the mill, which could
- typically involve extreme environments from hot to cold. This position can require long hours, weekend and
- holiday coverage to support routine responsibilities.
- This position does not supervise others.
- Newsweek's Top 100 Most Loved Workplaces 2021, '22, '23
- Human Rights Campaign Foundation's Equality 100 Award 2020, '21,'22, '23
- Disability:IN's Best Places to Work for Disability Inclusion 2021, '22, '23
- Ethisphere's World's Most Ethical Companies 2022, '23
- Military Times' Best for Vets: Employers 2023
- Mansfield Certification for progressing Diversity, Equality, and Inclusion in Legal Department: 2023
IT Security Administrator, BRS - Osceola, United States - Big River Steel
Description
Job DescriptionU. S. Steel is committed to fostering an inclusive workplace culture and celebrate the diversity of our employees. A Cybersecurity Engineer is responsible for contributing to the analysis, design, implementation, and support of the company's cybersecurity requirements in both the IT and OT environments. This includes working with and attending plant operations and process control meetings acting as a liaison between operations and corporate cybersecurity team to support plant OT projects and identify cybersecurity related needs. This role will also have a technical requirement to facilitate changes to critical network security equipment including firewalls, remote access tools, and other security tools to reduce risk and implement additional cybersecurity controls to the environment. In addition, the Cybersecurity Engineer will have responsibility for investigating information security incidents with the assistance of the corporate cybersecurity team. Qualified candidates must be able to lead, motivate, and participate as a team player and have a strong understanding of technology including experience securing IT and OT systems. Candidates will be considered based on a combination of education, certifications, and relevant experience. Experience with operational technologies and process safety is a plus.
Duties and Responsibilities
Since 1901, U. S. Steel has been a recognized leader in steel production. Today, as the first North American steel company to have declared a 2050 net-zero greenhouse gas emissions goal, we remain as innovative as ever, leading transformation across our industry while continuing to make products for everyday life - from industries as far ranging as automotive, construction, containers and packaging, appliances, and energy.
We show pride in our communities with community partnerships, corporate charitable contributions, company-sponsored employee volunteer initiatives, leadership training, and much more. And of course, we have a steadfast commitment to safety first in our workplaces and respect for our employees, who are United by Steel.
We are honored to have earned accolades and awards from well-regarded organizations, including the following:
Competency Summary
At U. S. Steel all employees are expected to display the following core competencies every day to advance corporate, team and individual goals:
Think: Think Critically and Drive Change
Lead: Develop Talent and Collaborate
Do: Empower Performance and Deliver Results