Cyber Security Engineer

Positions:

• OT Security SME – IEC62443
• IT Cyber Security Engineer (Cisco ISE & TrustSec)

Contract: 1 year (Remote)

Responsibilities

Position-1: OT Security SME – IEC62443:

• Validate zoning/segmentation intent and ensure endpoints are mapped against zones with appropriate VLAN/subnet placement inputs.
• Review and consolidate application communication flows to support policy intent and to define move groups based on dependency boundaries.
• Identify dependency risks (interlocks, shared services, cross-zone flows) that affect move-group sequencing and cutover safety.
• Provide assurance that planned logical changes and cutover steps maintain required OT communications and support resilience/security alignment (IEC62443/NIST alignment is explicitly required).
• Produce/maintain data-flow and move-group artefacts used by OT PMs and engineers for downtime planning and coordinated cutovers.
• Zone/endpoint mapping assurance notes, application flow matrices, move-group definitions, OT cutover dependency plan, and as-built variance inputs

Position-2: IT Cyber Security Engineer (Cisco ISE & TrustSec):

• As per defined design standards and approved design below activities to be performed:
• Build, and configure Cisco ISE and TrustSec solutions to enable secure, segmented network access as part of remediation plans.
• Implement and manage authentication (802.1X, MAB), authorization, and endpoint profiling policies in Cisco ISE for devices impacted by remediation.
• Configure and enforce Security Group Tags (SGTs) and Security Group Access Control Lists (SGACLs).
• Deploy and maintain TrustSec tagging, SXP peer relationships, and policy propagation across Cisco switches and wireless controllers to ensure consistent remediation.