OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
Are you passionate about ensuring the security and resilience of critical operational technology (OT) systems? Do you possess a deep understanding of cybersecurity governance frameworks and practices? If so, we have an exciting opportunity for you! Our company is seeking a highly skilled and motivated Operational Technology Security Governance Specialist to join our team. As an OT Security Governance Specialist, you will play a crucial role in safeguarding our OT systems and infrastructure, protecting against cyber threats, and ensuring the continuous operation of our critical assets. Join us and be at the forefront of securing our organization's technological landscape
At Enterprise IT Security (EITS), we are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs drive the business, the TDs provide research, development, purchasing, manufacturing, and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction, and have global responsibility in group-wide functions such as IT, legal, compliance, and security.
This function/role resides in the Active Cyber Defense division which is a part of EITS and responsible for proactive measures to enhance preparedness against cyber threats.
Role Description
In this role, you will:
Develop and implement comprehensive OT security governance frameworks, policies, and procedures to align with industry standards and best practices.
Collaborate with cross-functional teams, including IT and operations, to establish effective security controls and risk management strategies for OT systems.
Conduct regular assessments to evaluate the effectiveness of existing OT security governance practices and identify areas for improvement.
Monitor and analyze OT security trends, vulnerabilities, and emerging threats, and provide recommendations for proactive risk mitigation.
Develop and deliver training programs and awareness campaigns to enhance OT security awareness and promote a culture of security throughout the organization.
Work closely with internal stakeholders to ensure compliance with regulatory requirements and industry standards related to OT security.
Provide technical expertise and guidance in the design and implementation of security controls for OT systems, including network segmentation, access controls, and intrusion detection systems.
Collaborate with incident response teams to develop and test incident response plans specific to OT security incidents.
Stay up to date with the latest developments in OT security governance, emerging technologies, and industry trends, and apply this knowledge to enhance security practices within the organization.
Critical Competencies:
Proven experience in OT security governance, preferably in a critical infrastructure or industrial environment.
Strong knowledge of OT systems, including SCADA, DCS, and PLCs, and their associated security challenges.
In-depth understanding of cybersecurity governance frameworks, such as NIST CSF, IEC 62443, or ISO 21434, and their application in OT environments.
Familiarity with relevant regulatory requirements and standards, such as NERC CIP or IEC 61511.
Experience in conducting security risk assessments, vulnerability assessments, and compliance audits for OT systems.
Effective communication skills to clearly convey complex technical concepts to both technical and non-technical stakeholders.
Willingness to learn, know and understand Volvo Group security policies, directives and requirements
Minimum Education and Experience:
Bachelor’s or Master’s degree in Information Technology, Information Systems, Engineering, a related field or equivalent work experience.
Minimum of 3 years of experience in OT security area
Experience in tech, security or automotive industry is highly regarded
Strong commitment to staying updated with emerging cyber threats, industry trends, and advancements in OT Security Area
Domain-specific certifications (e.g., CISSP, CISM, GICSP) would be an advantage
Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.