Sr. Security Consultant - Industrial Control Systems

company banner
Cisco Systems Inc.
Architecture, Automated, CISSP, Cisco, Consulting, Development, ISO, Manager, Management, Project, Research, Risk Management, Sales, SDLC, Security
Contract Corp-To-Corp, Contract Independent, Contract W2, C2H Corp-To-Corp, C2H Independent, C2H W2
Telecommuting not available Travel required to 70%.

Job Description

Senior Security Consultant, Industrial Control Systems

The Business Entity

Cisco Security Solutions provides full life cycle services for Cisco's top customers through delivery of advisory, integration, and managed services. Complementing the strongest portfolio of security products Cisco is in a unique position to deliver security outcomes for its customers. As a global business unit Cisco Security Services seeks to solve the most critical challenges of our customers throughout the world through high value services throughout their security journey.

The Team

The Cisco Security Advisory Services, Strategy, Risk and Compliance team provides a range of short- and long-term consulting services that include defining, security and risk program strategy, building enterprise security policy, process, and architecture as well assessing compliance against a specific regulatory framework or requirement. The team includes experts in enterprise and operations security as well as major industries requiring use of Automated Industrial Control Systems (AICS) such as oil and gas, energy, wet infrastructure, transportation, chemical, nuclear, health sciences, and manufacturing.

Role & Responsibilities

Job Summary

This position is an external customer-consulting role responsible for supporting the sale, delivery and management of security, risk, and compliance services with a focus on customers who utilize AICS to create and deliver products or services. They are also responsible for mentoring more junior consultants and supporting service development.


* Provide information security, risk management, or compliance consulting services to enterprise and service provider clients

* Provide technical expertise in AICS security architecture, and experience for infrastructure, platform and software technologies across site, regional, national, and international

* Lead consulting teams in one or more key services such as AICS Risk, Impact, and Security Assessment, Segmentation Design, Regulatory or Standards Compliance, Identity and Access Management, and Cross-Domain Architecture, monitoring and mentoring junior consultants as appropriate

* Scope engagements and support the development of proposals and statements of work, effectively translating customer requirements into an engagement to meet those needs; complete accurate project profitability models

* Translate business, industry, and regulatory requirements into information security objectives and associated tactical/strategic information security initiatives, architectures, and standards, particularly related to AICS operations computing

* Interact with AICS technology providers to support Cisco partnerships as required

* Identify sales opportunities during and after engagements; work with sales personnel to close business

* Participate in the development and continuous improvement of service portfolio

* Participate in Labs research, PR, and speaking engagements, as appropriate

* Participate in the development and ongoing improvement of the full commercial and proprietary consulting toolset

* Complete time and expense reporting in a timely and accurate manner

* 50-70% travel

Minimum Qualifications

Required Qualifications:

Three+ years of in-depth architecture, engineering, operations, or security experience with one or more AICS customer user industries such as:

* Oil & Gas

* Energy Transmission / Distribution

* Energy Generation

* Nuclear Power

* Nuclear Enrichment

* Chemical

* Wet Infrastructure

* Transportation

* Health Sciences

* Mining

* Manufacturing

Ten+ years of in-depth information security and/or risk management experience with specific focus on one or more of the following:

* Network security

* Application security & secure SDLC

* Information Risk Management

* IT and Security governance

* OT and Security governance

* Incident response planning

* Security operations

* Security program development

* Compliance management

Ability to perform as a senior security consultant, including:

* Experience researching, developing, and applying new methodologies and technologies

* Demonstrated ability to achieve utilization goals

* Ability to consistently and successfully lead engagements from a technical perspective, achieving customer satisfaction goals

* Strong understanding of industry leading practices in information security, compliance and risk management

* Excellent consulting skills, Successful consulting experience preferred

* Excellent verbal, and written communication skills

* Ability to present to, communicate and build rapport effectively with business, IT, OT, and security executives

Practical experience with one or more of the following:

* AICS Qualified Security Assessor

* AICS Qualified Security Vulnerability Assessor

* EU Data Privacy


* NIST Cyber Security Framework

* NIST SP 800-53

* NIST SP 800-82

* ISA 99 / IEC 62443


* Local Laws and Regulation

* International Standards Organization (ISO) 27001/27002/27005

* ISACA Control Objectives for Information and related Technology (COBIT)

Education Requirements:

* A Bachelor's degree or equivalent relevant professional experience

Desired Skills

Certifications (preferred, but not required):

* GIAC Global Industrial Cyber Security Professional (GICSP)

* Certified Information Systems Security Professional (CISSP)

* Certified Information Security Manager (CISM)

* Certified Information Systems Auditor (CISA)

* Global Information Assurance Certification - Other (GIAC)

* Others as appropriate to specific domain expertise

About Cisco

The Internet of Everything is a phenomenon driving new opportunities for Cisco and it's transforming our customers' businesses worldwide. We are pioneers and have been since the early days of connectivity. Today, we are building teams that are expanding our technology solutions in the mobile, cloud, security, IT, and big data spaces, including software and consulting services. As Cisco delivers the network that powers the Internet, we are connecting the unconnected. Imagine creating unprecedented disruption. Your revolutionary ideas will impact everything from retail, healthcare, and entertainment, to public and private sectors, and far beyond. Collaborate with like-minded innovators in a fun and flexible culture that has earned Cisco global recognition as a Great Place To Work. With roughly 10 billion connected things in the world now and over 50 billion estimated in the future, your career has exponential possibilities at Cisco.

Cisco is always looking to identify talented people. If you are reading this posting then we may not have an open job for you right now, however it is highly likely we will in the very near future.

If you are interested in working for Cisco in this capacity then please submit your details and CV or resume against this requisition so that a Cisco representative can contact you directly.




Posted By

170 West Tasman Dr. San Jose, CA, 95134

Company Information

Change the way people work, live, play, and learn around the world. Whatever you do at Cisco—from mobility, cloud, security, and IT to software and consulting—your transformative ideas can propel innovation and fuel disruptive collaboration. Making what's not yet thought possible a reality. Sound like you? Join us.
Dice Id : ciscobot
Position Id : 1026391