NERC CIP Cyber Security Technician

NERC CIP Cyber Security Technician

Location: Newington, NH

Major Duties & Responsibilities

This position is primarily responsible for Low and Medium Impact Cyber Security Critical Infrastructure Protection (CIP) and non-CIP Operational Technology responsibilities for a power generation facility located in Newington, NH. The position will report to the Sr. Director of Operations and be expected to work under minimal supervision, mainly focusing on implementing cyber security processes, including patching, managing ports and services, monitoring network status, configuration in the operations environment, and completion of NERC CIP Standard deliverables. Additionally, security analysis of OT Control Systems to include identification of patching levels, malicious software prevention and cyber security vulnerabilities.

Additionally, the position will be required to work within dedicated software programs to perform, track and schedule all NERC CIP compliance related requirements.

The responsibility of this role will also include assistance as required to other Company facility locations in an SME (Subject Matter Expert) and/or supportive role.

Requirements

Position Requirements –

• Evaluate, track and patch cyber assets as needed within the NERC CIP compliance policies and following proper change management.

• Perform necessary asset security verifications following change management authorizations.

• Knowledge of the latest standard practices for communication protocols and operating system(s) technologies.

• Collaborate with other teams and assist with troubleshooting IT/OT systems.

• NERC-CIP Audit and CIP Spot Check support by direction.

• Assist with performing Cyber Vulnerability Assessments at Medium Impact facilities.

• Collect listings of ports and services, installed software and local and/or active directory accounts contained in industrial control devices.

• Ability to interface and develop a good working relationship with multiple teams across the enterprise.

• Good organizational skills in regard to proper document control across multiple entities.

• Ability to meet critical program requirement milestones and deadlines

• Excellent work ethic with dedication to completing tasks in a timely manner and the ability to work independently.

• Ability to travel as required but may require remote work

Education/Experience Required

Experience-

• Bachelor`s degree in technical discipline or equivalent experience

• Minimum of three years in industrial electronic controls and operational technology

• Knowledge of generation plant controls being a plus.

• Knowledge of NERC-Critical Infrastructure Protection (CIP) Standards is a plus.

• Excellent verbal and written communication skills.

• Agility in managing, prioritizing, and executing on multiple priorities depending on the needs of the business.

• Knowledge in the use of network tools such as Wireshark, nMap, and NPView, or similar.

• Knowledge of industrial control systems such as GE Mark V, Mark VI, and Siemens T3000 or others typically used in power generation is a plus.

• Working knowledge of Microsoft Word, Excel, PowerPoint, Teams, and Visio.