Cybersecurity Engineer

OTSI (Object Technology Solutions, Inc), we have an immediate opening for a Job Title Cybersecurity Engineer with one of our direct clients.

Job Title: Cybersecurity Engineer

Work Location: Houston, TX (Hybrid-4 days onsite)

Duration: Full Time

Job Description:

The Cybersecurity Engineer plays an integral role in defining and assessing the organization's security strategy, operations and practices. The Cybersecurity Engineer will assume responsibilities for multiple security functions. The Cybersecurity Engineer will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services. The Cybersecurity Engineer will be required to develop, execute and track the performance of security measures to protect information, network infrastructure and computer systems. The Cybersecurity Engineer will lead and mentor staff and ensure they are following Cybersecurity best practices and industry standards.

Core Responsibilities

• Deploy and manage security infrastructure such as but not limited to firewalls, CASB, IPSs, WAFs, endpoint protection (DLP & EDR), MFA, SIEM, and vulnerability management tools on premise and cloud.
• Support and implement baseline security configuration standards for IT/ICS/OT/IoT, cloud, operating systems, networking, encryption, data security, data classification, and identity and access management (IAM) assuring architectures meet security best practices that reduce risk and enhance security.
• Participate in security assessments of internal systems, applications and IT infrastructure; managing these systems in a security information and event management system as part of the overall risk management practice of the organization.
• Provide timely reporting of security related systems and events to various levels of management on a regular basis
• Work with internal teams (Compliance, Legal, HR, etc.) to understand their security requirements and incorporate into the overall Strategy and execution plans.
• Maintain, manage, and monitor cybersecurity training program.

HSEQ Requirements and Code of Conduct:

• HSEQ: Complies with the Client HSEQ Code of Conduct as described in the HSEQ Policies, the 14 HSEQ Standards, and the HSEQ Procedures to protect people and the environment at all times. Has a duty of care to ensure that all personnel work in a manner that is not harmful to their own health and safety and the health and safety of others.
• Compliance: Complies with the Client Group Policy Code of Business Conduct and Ethics, Client Group IT Policy and Standers, and expected training at all times.

Work Relationships

• Daily internal contacts with IT team members and contractors. Interfaces with cost center managers and business unit managers to clarify objectives, priorities, and costs. Frequent external contact with suppliers, lease, and maintenance companies.

Qualifications & Experience

Educational Qualification:

• Bachelor s degree in computer science, Information Systems, Cyber Security, OR seven plus years experience in the role.

Certification(s):

One or more of the following certifications are preferred:

• ISC2's CISSP
• ISACA's CISM
• ISACA's CISA
• The Open Group's TOGAF
• SANS' GAIC
• IAPP's CIPT

Relevant Experience:

• A minimum of 7 years or more experience in a security related field with direct responsibility to manage security one or more of the following:
• Direct, hands-on experience deploying & managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection (DLP & EDR), SIEM, and vulnerability management tools on premise and cloud
• Documented experience and a strong working knowledge of the methodologies required to conduct threat-modeling exercises on new technologies and services
• Working knowledge of cybersecurity training and operations
• Working knowledge of OT cybersecurity
• Knowledge the secure deployment of workloads into public cloud services (e.g., AWS or Microsoft Azure)

Industry and Regulatory Experience (One of more of the following):

• Sarbanes-Oxley Act, and Japanese the variant
• General Data Protection Regulation (GDPR)
• Privacy Principles (best practices)
• International Organization for Standardization (ISO) 27001/2
• National Institute of Standards and Technology (NIST)
• Cybersecurity Framework (CSF)
• IT Service Management (ITIL)

About us:

OTSI is a global technology partner providing enterprise IT consulting, digital solutions, and managed services. We help organizations modernize complex technology landscapes, harness the power of data, and build scalable AI-led ecosystems to accelerate innovation and business growth. With over 26 years of experience, we consistently turn complex challenges into success stories through our strong technical capabilities and deep industry knowledge. Our global team of 1,800+ professionals, spread across 6 countries, delivers cutting-edge solutions for customers across Banking, Financial Services, Insurance, Transportation & Logistics, Energy & Utilities, Healthcare & Life Sciences, Government, Hi-Tech, Telecom & Media, Manufacturing, and more.

Our focused technologies are:

• Data & Analytics (Traditional EDW, BI, Big data, Data Engineering, Data Management, Data Modernization, Data Insights)
• Digital Transformation (Cloud Computing, Mobility, Micro Services, RPA, DevOps)
• QA & Automation (Manual Testing, Nonfunctional testing, Test Automation, Digital Testing)
• Enterprise Applications (SAP, Java Full stack, Microsoft, Custom Development)
• Disruptive Technologies (Edge Computing/IOT, Block Chain, AR/VR, Biometric)