Are you looking to be part of a leading, innovative, inclusive and collaborative company that allows you to grow and balance your personal and work life?

If so, congratulations! DEINTEC is for you. We are a 100% Mexican consulting company, specialized in Information Technology that collaborates with clients from various sectors (such as: pharmaceutical, metallurgical, technological, gases, etc.) and countries, and we are looking for people passionate about IT, like you .

Discover below the vacancy we have for you!

Consultant Security Ssr ( MX Cyber Security and OT Coordinator )

• Education: Career in computing or related field
• Availability: Immediate
• Language: Advanced English
• Minimum experience: +5 years

We offer

• Attractive salary that is in line with your experience and the opportunity for economic growth
• Legal benefits (such as: vacation bonus, IMSS, Christmas bonus, etc.) 
• Working: Monday to Friday
• Time: Determined (12 MONTHS)
• Work location and format: In-person. Monterrey, Nuevo León, México

Job Description

The USA Cyber and OT Security Coordinator oversees all aspects of the unified information technology and operational technology cybersecurity controls for the USA operations of Cemex.  Additionally, this role guarantees the compliance of legal and audit controls based on country specific legislations in, US and Canada Cemex business operations.

 

Responsibilities

Understanding of Industrial Processes:

Knowledge of various industrial sectors, processes, and technologies is crucial to comprehend how cyber threats can impact operations and safety within these environments.

Familiarity with OT Protocols and Standards:

Understanding and experience with OT-specific communication protocols and standards like Modbus, DNP3, OPC UA, IEC 61850, etc.

Network Security and Architecture:

Expertise in designing, implementing, and securing OT network architectures, including segmentation, VLANs, firewalls, and virtual private networks (VPNs).

Risk Assessment and Management:

Ability to assess cybersecurity risks in OT environments, perform risk analysis, and develop strategies to mitigate and manage risks effectively.

Incident Response and Forensics:

Proficiency in responding to and investigating cybersecurity incidents in OT, including incident handling procedures, forensics, and identifying the root cause of incidents.

Security Controls and Technologies:

Knowledge of security controls specific to OT, such as intrusion detection systems (IDS), intrusion prevention systems (IPS), endpoint protection, secure coding practices, and access control mechanisms.

Security Policies and Compliance:

Understanding of regulatory requirements and compliance frameworks related to OT security, and the ability to develop and implement security policies and procedures accordingly.

Patch Management and Vulnerability Assessment:

Skills in identifying vulnerabilities in OT systems, conducting vulnerability assessments, and implementing effective patch management strategies to mitigate risks.

Industrial Control System (ICS) Security:

Understanding of ICS components, architectures, and security measures specific to ICS, including PLCs, RTUs, HMIs, SCADA systems, and other critical devices.

Cyber Hygiene and Best Practices:

Knowledge of fundamental cybersecurity practices, including secure configurations, password management, software updates, and employee training and awareness.

Security Monitoring and Threat Detection:

Ability to implement security monitoring solutions and utilize tools for detecting anomalies, intrusions, and potential cyber threats within OT networks.

Collaboration and Communication:

Strong communication and collaboration skills to effectively work with cross-functional teams, including IT professionals and engineers, to align OT cybersecurity with broader organizational goals.

 

 

Requirements

• Manage all aspects of Information Technology cybersecurity controls for the USA & Canada operations of Cemex.
• Manage all aspects of Operational Technology cybersecurity controls for the USA & Canada operations of Cemex.
• Keep and guarantee information security SLA’s in close coordination with the Enterprise Information Security Management department of P&IT Central and any Information Security outsourcing partners.
• Manage activities related to internal and external audits to guarantee compliance with local cybersecurity laws pertinent to the countries and state regulations in coordination with the Enterprise Risk Management, Process Assessment, Internal and External auditors.
• Ensures compliance with global information security standards in accordance with ISO 27001, Sarbanes-Oxley, GDPR, PCI, and HIPPA. 
• Guarantee and keep the Disaster Recovery and Business Continuity Plans updated and relevant.

If you fit the profile, apply!