¿buscas ser parte de una empresa innovadora, inclusiva y colaborativa, que valora tanto tu desarrollo profesional como el equilibrio entre tu vida personal y laboral, y que cuenta con diversidad de clientes líderes en varios sectores?
si es así, ¡descubre la vacante que deintec tiene para ti e impulsa tu carrera en it!
posición*:consultant security ssr (coordinador de seguridad cibernética y ot de mx)*
ubicación: monterrey, nuevo león
esquema: presencial en oficinas
tipo de contrato: tiempo determinado (12 meses)
horario: lunes a viernes
*descripción del perfil*
the usa cyber and ot security coordinator oversees all aspects of the unified information technology and operational technology cybersecurity controls for the usa operations of cemex.
additionally, this role guarantees the compliance of legal and audit controls based on country specific legislations in, us and canada cemex business operations.
*responsabilidades*:
- manage all aspects of information technology cybersecurity controls for the usa & canada operations of cemex.
- manage all aspects of operational technology cybersecurity controls for the usa & canada operations of cemex.
- keep and guarantee information security sla's in close coordination with the enterprise information security management department of p&it central and any information security outsourcing partners.
- manage activities related to internal and external audits to guarantee compliance with local cybersecurity laws pertinent to the countries and state regulations in coordination with the enterprise risk management, process assessment, internal and external auditors.
- ensures compliance with global information security standards in accordance with iso 27001, sarbanes-oxley, gdpr, pci, and hippa.
- guarantee and keep the disaster recovery and business continuity plans updated and relevant.
*requisitos esenciales*:
english (b2, c1, c2, native)
+5 years of experience as a consultant security
- understanding of industrial processes:
knowledge of various industrial sectors, processes, and technologies is crucial to comprehend how cyber threats can impact operations and safety within these environments.
- familiarity with ot protocols and standards:
understanding and experience with ot-specific communication protocols and standards like modbus, dnp3, opc ua, iec 61850, etc.
- network security and architecture:
expertise in designing, implementing, and securing ot network architectures, including segmentation, vlans, firewalls, and virtual private networks (vpns).
- risk assessment and management:
ability to assess cybersecurity risks in ot environments, perform risk analysis, and develop strategies to mitigate and manage risks effectively.
- incident response and forensics:
proficiency in responding to and investigating cybersecurity incidents in ot, including incident handling procedures, forensics, and identifying the root cause of incidents.
- security controls and technologies:
knowledge of security controls specific to ot, such as intrusion detection systems (ids), intrusion prevention systems (ips), endpoint protection, secure coding practices, and access control mechanisms.
- security policies and compliance:
understanding of regulatory requirements and compliance frameworks related to ot security, and the ability to develop and implement security policies and procedures accordingly.
- patch management and vulnerability assessment:
skills in identifying vulnerabilities in ot systems, conducting vulnerability assessments, and implementing effective patch management strategies to mitigate risks.
- industrial control system (ics) security:
understanding of ics components, architectures, and security measures specific to ics, including plcs, rtus, hmis, scada systems, and other critical devices.
- cyber hygiene and best practices:
knowledge of fundamental cybersecurity practices, including secure configurations, password management, software updates, and employee training and awareness.
- security monitoring and threat detection:
ability to implement security monitoring solutions and utilize tools for detecting anomalies, intrusions, and potential cyber threats within ot networks.
- collaboration and communication:
strong communication and collaboration skills to effectively work with cross-functional teams, including it professionals and engineers, to align ot cybersecurity with broader organizational goals.
*ofrecemos*:
- salario competitivo basado en experiência
- prestaciones de ley (como: prima vacacional, seguro social, aguinaldo, etc.)
- oportunidad de crecimiento profesional.
si cumples con los requisitos y te motiva avanzar en tu carrera, postúlate hoy.
¡en deintec, nos emociona contar con tu talento
pay: from $40,000.00 per month
*experience*:
- consultant security: 5 years (required)
- coordinador de seguridad: 1 year (preferred)
- ot protocols and standards: 2 years (required)
*language*:
- english (b2, c1, c2, native