Cyber Security Research Specialist, Industrial Applications - Jobs in Fredericton, NB

Job Description

INTROCNL has a small, specialized cyber security team that has expertise in the design, development, implementation, commissioning and commercialization of critical safety process control systems.CNL is seeking a senior-level Cyber Security Research Scientist/Engineer to:

• Develop cyber security assessment and penetration testing methodologies for industrial control applications; support service delivery to external stakeholders.

• Support product development of cyber security products and services for critical infrastructure.

• Propose, develop, evaluate, and engineer cyber security solutions using a combination of electrical, instrumentation & control and computer engineering skills including software design, development and testing.

• Manage the development of a cyber test facility comprising simulated process control, segmented networks modelling different security zones, and various cyber and physical security products.

• Propose new cyber security techniques and technologies and design, develop, test and validate these new capabilities with the goal of developing practical and innovative cyber security solutions for industrial control applications.Current research includes cyber asset identification and classification, vulnerability assessments, intrusion detection, penetration testing, countermeasures development and assessment, automated auditing, analytics, and forensic analysis.

DUTIES

• Serve as a senior member of the cyber security research group, proposing and leading research, investigations, and experiments that address people, process and security risks in the cyber domain.
• Develop and deliver cyber security training programs for a variety of audiences such as plant operations staff, plant managers and cyber security personnel.
• Propose and prototype defense-in-depth industrial control system security measures for optimal threat protection, monitoring and incident response and provide guidance to stakeholder groups.
• Engage and assist stakeholder groups in assessing their cyber security posture and, when warranted, recommend practical process and technology-based solutions in order to achieve evidence-based improvements.
• Conduct research in one or more areas including vulnerability assessments, cyber security risk modelling, malware analysis, network and host forensics, intrusion detection, physical security, biometrics, counter measures development and assessment, automated auditing, penetration testing, and analytics.
• Responsible for leading software development and systems engineering in support of basic and applied cyber security research in the real-time I&C system domain.
• Coordinate and collaborate with other researchers and stakeholders.
• Promote a strong security culture

QUALIFICATIONS

• An undergraduate degree in Computer Science, Engineering, or Applied Mathematics from a university of recognized standing and a minimum of fifteen (15) years of relevant experience in I&C systems technology, or information security/cyber security technology.
• Preferred knowledge, skills and abilities include:
  • Expertise in the development, deployment, maintenance and operations of I&C systems for safety applications.
  • General knowledge and/or experience with cyber security technologies (e.g., intrusion detection systems, forensic analysis tools, penetration testing tools, next generation firewalls, application control, whitelisting, AV, encryption, automated auditing, analytics), and advanced persistence threats, zero day exploits, and malware attack vectors.
  • Experience conducting safety and/or security risk assessments in the I&C domain.
  • Experienced in project management and contract management,
  • Experience in aspects of the systems development lifecycle and associated tools (e.g., requirements, design, implementation, integration, test, deployment, revision control, configuration management, change control).
  • Experience in the following technologies is highly desirable:
  • Modern computing technologies (e.g., switch and firewall configurations)
  • Operating systems (e.g., Windows, Windows Server, Linux)
  • Communication protocols (e.g., TCP/IP, HTTP, SSL)
  • I&C systems (e.g., PLCs, DCS)
  • Industrial I&C communication protocols (MODBUS, Profibus, OPC)
  • Demonstrated ability to lead teams to deliver on large projects
  • Demonstrated ability to prepare and deliver specialized training
  • Experience mentoring and developing junior staff
  • Excellent written and oral communication skills

Quick Apply

• Terms & Conditions
• New Privacy
• Privacy Center
• Accessibility

For Job Seekers

• Browse Jobs
• Advanced Job Search
• Emplois Quebec

For Employers

• Post a Job

Stay Connected