Cyber Trust Advisory - Consultant - OT/IoT

Help AG is looking for a talented and experienced Cyber Trust Advisory - Consultant - OT/ IoT who will be responsible for the successful delivery of consultancy tasks for projects related to information security, OT/IoT Security within the defined budget and timeline. This includes the execution of end-to-end activities related to identification of systems under consideration, defining the security organization, roles and responsibilities, incident management practice, business impact analysis, risk-assessments and treatment planning, effectiveness measurements, development of policies and procedures for IoT/OT, awareness programs development and execution.

The Cyber Trust Advisory - Consultant - OT/IoT will also participate in projects and/or drive a team to execute projects in relation to OT/IoT Security Governance, Risk and Compliance. The candidate will be involved in business development activities where required.

Requirements

Responsibilities:

• Executing consultancy projects related but not limited to IEC62443/NIST, ISO/IEC 270XX, ISO 22301, NCEMA, ISR, NESA.
• Support the presales activities in relation to the identified consulting services.
• Interface with management for project-related matters.
• Gaining familiarity with the technical products in the help AG portfolio and guide staff in integrating this knowledge for the management system consultancy.
• Supporting the standardization activities.
• Identifying own areas of work and further developing existing work areas.
• Providing feedback on service lines enhancement.
• Representing Help AG Consulting team in event/PR.

Qualifications & Skills:

• Bachelor’s degree in information technology or related field.
• Minimum 5 years OT/IoT hands-on security governance experience.
• Understanding and knowledge of industry standards and industry frameworks (e.g., COBIT, COSO, ISO 27001, NIST, IEC62443, NERC CIP, NIS Directive, TOGAF/SABSA framework).
• Understanding of security requirements, contributions to security design and hands-on implementation of multiple OT/IoT security technologies and capabilities.
• Hands on experience working with stakeholders in identifying, prioritizing, and developing plans and roadmaps for OT/IoT cyber security programs.
• Certifications such as CISSP, TOGAF, CISM.
• Experience in securing Industrial Control Systems (ICS) or Process Control Networks (PCN).
• Experience with Internet of Things (IoT) or Operational Technologies (OT) security architecture, design and implementation.
• Hands on experience working with stakeholders in identifying, prioritizing, and developing plans and roadmaps for cyber security programs.
• Experience in working independently or as part of a large team to delivery Ot/IoT Cybersecurity services within large complex projects.
• Practical experience with conducting risk assessments and testing of controls.
• IT/OT strategy with a focus on convergence, OT program management, Cyber risk strategy, Cyber risk program management and delivery, Cyber Assessments and road-mapping, network & infrastructure security, cyber transformation, threat detection, incident response, vulnerability management, security governance, risk and compliance, security awareness, Service delivery and operations, Third party management, Data protection, Cloud Security, Security Architecture, Application management and secure software development lifecycle (SSDLC), Security Operations, Cyber Resilience.
• Familiarity with industry standards and regulatory requirements around cyber risk management specific to ICS (e.g., NIST SP 800-82 Rev. 2, NIST SP 800-53 Rev.4, IEC 62443, NERC CIP etc.)
• Excellent analytical skills and knowledge of data analytics methods.
• Excellent interpersonal, written, verbal, communication, and presentation skills.
• Excellent command in written and spoken English.
• Excellent verbal and written communication.

Benefits:

• Health insurance with one of the leading global providers for medical insurance.
• Career progression and growth through challenging projects and work.
• Employee engagement and wellness campaigns activities throughout the year.
• Excellent learning and development opportunities.
• Annual flights tickets to home country.
• Inclusive and diverse working environment.
• Flexible/Hybrid working environment.
• Open door policy.

About Us:

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security services and solutions that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in Feb 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and cybersecurity focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.