Job Description

About the Role

Location

Malaysia

Selangor

Petaling Jaya

Organization

Gas Services

Business Unit

Service Asia Pacific

Full / Part time

Full-time

Experience Level

Experienced Professional

A Snapshot of Your Day

Using technology to create and accomplish something that benefits society and promotes peace is a noteworthy idea. Using technology to capture data, analyze and tell a story of potential attack plans is a realistic possibility. Siemens Energy is dedicated to attracting and retaining top OT Cybersecurity talent and we are looking for a Data Analytics and Reporting Cybersecurity Analyst who can utilize techniques to create useful intelligence to improve security and privacy. Someone who has the unique ability to identify potential weaknesses or vulnerabilities in networks or endpoints, either from an offensive (Red Team) or defensive perspective (Blue Team). A Siemens Energy Cybersecurity Data Analyst should understand common vulnerabilities, the threats that they pose and ways to manage these risks. They are also responsible for analyzing data from multiple sources throughout its life cycle, from generating requirements to reporting conclusions to improve Cybersecurity posture. This includes the analysis as well as designing and implementing algorithms and processes for large-scale datasets. As a Global OT Cybersecurity solutions leader, we are also responsible for understanding the increasing number of critical infrastructure regulations, collection, and processing of sensitive data, therefore, it\'s imperative our Cybersecurity Analyst needs to be aware of the laws and regulations in all relevant jurisdictions. A key understanding of the business need will be required to clearly outline what expectations are, so organization can then shape its monitoring and reporting accordingly, and ultimately select appropriate metrics to track.

How You\'ll Make an Impact

• Bachelor\'s or Advanced Degree in Computer Science, Computer Information Systems, Etc.
• Minimum 4+ years working in SOC with strong security technology operations experience
• Experience in working with Operational Technology (OT) and/or Information Technology (IT), information security or other relevant work experience
• Knowledge of penetration testing, network security, and the techniques used to expose and correct security flaws
• A broad understanding of security technologies including traditional firewalls, NGFW, proxies, SIEM, antivirus software, and IDPs
• The ability to identify and spotlight vulnerabilities on on-premises and remote networks, correct problems, and prevent security breaches
• Responsibility and conscientiousness, including proper management of patches to defray business impact while keeping security protocols up-to-date
• The ability to think critically and innovatively about the security solutions that can keep data safe while still allowing a business to flourish
• Extensive knowledge of Advanced Persistent Threats (APT) tactics, technical and procedures
• Advanced industry certifications for security defenders such as GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handling (GCIH), CompTIA Advanced Security Practitioner (CASP+) or similar
• Experience working in a Managed Security Services (MSS) or Manage Detect and Respond (MDR) environment
• Solid understanding of computer operating systems, including server operating systems (Windows & Linux)
• Solid understanding of cloud infrastructure (Amazon, Azure, Google)
• Proficient with EDR and SIEM platforms
• Proficiency in at least one common scripting language
• Solid understanding of network protocols & architecture
• Strong problem-solving skills
• Strong sense of ethics & values, ability to handle confidential situations with discretion

High Performance Functional Abilities

• Experience working in fast paced environments, and ability manage workload even during times of stress or escalated activity
• Comfortable with impromptu tasking and loosely defined requirements
• Strong time management and multitasking skills as well as attention to detail
• Strong collaborative skills and proven ability to work in a diverse team of security professionals
• Excellent oral and written communications skills

What You Bring

As part of the Global Control & Digitalization Cybersecurity Team, some responsibilities of a Siemens Energy Cybersecurity Data Analyst, specifically around analytics, is to extract valuable information from vast amounts of raw data to construct models and draw actionable insights and needs to be competent in all stages of data collection and processing, including defining needs, data collection, analyze data, drawing conclusions, create visualizations/interpretations and reporting. Have a working understanding of algorithms, statistical analysis, behavioral analytics, machine learning, and other classes of analysis to solve Cybersecurity problems in a way that traditional security controls cannot.

To do so, one must posse the ability to:

• Identify gaps where data collection is necessary for analysis
• Examining reports, data, and analytics to identify suspicious activity and threats
• Understand what is possible to appropriately define collection needs
• Must perform any necessary pre-processing (outlier detection, gap analysis, normalization and so on) and then perform the actual analysis
• Based on the data collected and the analysis, the analyst should be able to prove or disprove any hypotheses
• Complete understanding of how to make visuals and report results in a form that is understandable to customers or stakeholders
• Monitor network traffic for security incidents and events
• Investigate incidents and respond to events in real time
• Install and operate firewalls, encryption programs, and other security software
• Identify and fix vulnerabilities
• Develop and promote best practices for operational security
• Conduct threat research
• Perform periodic risk assessments and penetration tests
• Collaborate with Cyber Threat Intelligence and remediation teams
• Security Data Analytics and Reporting
• Monitor communication channels such as e-mail, messaging and communications for hygiene, indication of potential compromise and security incidents
• Monitor OT assets life cycle for cyber hygiene and compliance with industry regulators or internal security standards
• Monitor internal access to devices and infrastructure components
• Monitor and detect threats to their OT infrastructure from malware, ransomware, and other persistent threats
• Ensure OT Information assets are patched for their vulnerabilities
• Compliance of technical controls against industry security framework (IEC62443, NIST, NERC-CIP, NIS Directive)

The Data Analytics and Reporting Cybersecurity Analyst is also responsible for ensuring they have the resources necessary to effectively perform high end analysis by acquiring and maintaining tools (internal and external if needed), managing appropriate data storage, developing, and documenting any processes necessary to perform analysis.

Who is Siemens Energy?

At Siemens Energy, we are more than just an energy technology company. We meet the growing energy demand across 90+ countries while ensuring our climate is protected. With more than 92,000 dedicated employees, we not only generate electricity for over 16% of the global community, but we\'re also using our technology to help protect people and the environment.

Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.

Our Commitment to Diversity

Lucky for us, we are not all the same. Through diversity we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character - no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.

Check out this video to learn more about Siemens Energy:

Jobs & Careers:

Gas Services

Our Gas Services division offers Low-emission power generation through service and decarbonization. Zero or low emission power generation and all gas turbines under one roof, steam turbines and generators. Decarbonization opportunities through service offerings, modernization, and digitalization of the fleet.

Check out this video to learn more about our Gas Service business

#li-jl2

Siemens Energy