Overview
Skills
Job Details
Overview:
The group CMA CGM is a world leading company in maritime transportation, expanding its activities on logistics and digital solutions for transport and logistics.
In this context, the group is also facing new challenges: a strong need of harmonization in terms of tools and processes, but also a mandatory framework regarding cybersecurity, especially toward our new business applications, our e-solutions, our value-added services such as connected containers. The increasing intramodality and digital services provided by CMA CGM to our customers requires indeed a continuous reliability provided by our Cyber Teams.
CMA CGM faces a great digital challenge and wants to commit to a high standard of cybersecurity, deploying a whole international team, to protect and strengthen its systems against cyberattacks.
Roles & Responsibility
We are seeking a highly skilled OT/IoT Security Specialist to join our team. The ideal candidate will be responsible for securing our operational technology (OT) and Internet of Things (IoT) environments, ensuring the security, availability, confidentiality and integrity of our systems across all operations.-
- Develop and implement security baselines, principles, blueprint and references for OT/IoT environments.
- Perform OT/IoT cyber security assessments against industry frameworks and provide recommendations and develop remediation roadmaps considering all aspects of the organization. - Contribute to security initiatives and roadmaps covering OT/IoT environments.
- Collaborate with different security teams on securing BUILD and RUN of OT/IoT environment
- Collaborate with IT and engineering teams to integrate security measures into system design
- Help the group towards compliance with industry standards and regulation
- Share knowledge with different stakeholders on OT/IoT security best practice
- Stay updated on the latest security threats and technologies related to OT/IoT
- Advise on security technologies, requirements, and processes in the context of OT/IoT implementation and integration project
- Drive security initiatives to secure the OT/IoT architectures and system
- Work closely with the architects, infrastructure teams, developers, and business unit stakeholders to define internal OT/IoT Security related policies and documentation
- Drive the business and technical engagement to adopt the OT/IoT Security Strategy: ensure all solutions and products are evaluated to meet architectural designs and are aligned and optimized to deliver the business goals in a cost effective, scalable, and agile way.
Knowledge, Skills & Abilities
- Knowledge of industry standards and information security management frameworks such as IEC 62443, NIST 800-53, NIST SP 800-82, NIST CMMC.
- Experience in assessing the cybersecurity of OT/IoT architecture using recognized assessment frameworks.
- Knowledge of OT/IoT architectures, such as SCADA, EMS, DCS and control devices like PLC, Controllers, IED, HMI etc. Experience with the design and implementation of OT/IoT cybersecurity solutions (i.e. Industrial Intrusion Detection Systems, Remote access solutions, etc.)
- Possessing any of the following certifications is considered a plus: ISA/IEC 62443 (any level), CSSA, GRID, CISSP, CISA.
- Knowledge in Maritime cybersecurity regulations is a plus.
- You are analytical, pragmatic, but also able to influence through a strong OT/IoT expertise and negotiate with various stakeholders in a customer-oriented approach.
- You bring leadership, team spirit, creativity, rigor and quality skills.
- You can plan, organize and drive projects, managing properly time and priorities. You are fluent in English and preferably in another language.
- You have excellent communication and presentation skills.
- You are detail-orientated with excellent time management skills.
Education & Experience
- Bachelor's degree in computer science, Information Technology, or relevant degree in cybersecurity field. Master's degree preferred
- At least 5 years of experience in OT/IoT cybersecurity in a large and complex environment.