Experienced Professional

A Snapshot of YourDay Using technology to createand accomplish something that benefits society and promotes peace is anoteworthy idea. Using technology to capture data, analyze and tell a story of potentialattack plans is a realistic possibility. Siemens Energy is dedicated toattracting and retaining top OT Cybersecurity talent and we are looking for a DataAnalytics and Reporting Cybersecurity Analyst who can utilize techniques tocreate useful intelligence to improve security and privacy. Someone who has theunique ability to identify potential weaknesses or vulnerabilities in networksor endpoints, either from an offensive (Red Team) or defensive perspective(Blue Team). A Siemens Energy Cybersecurity Data Analyst should understandcommon vulnerabilities, the threats that they pose and ways to manage theserisks. They are also responsible for analyzing data from multiple sourcesthroughout its life cycle, from generating requirements to reportingconclusions to improve Cybersecurity posture. This includes the analysis aswell as designing and implementing algorithms and processes for large-scaledatasets. As a Global OT Cybersecurity solutions leader, we are alsoresponsible for understanding the increasing number of critical infrastructureregulations, collection, and processing of sensitive data, therefore, itsimperative our Cybersecurity Analyst needs to be aware of the laws andregulations in all relevant jurisdictions. A key understanding of the businessneed will be required to clearly outline what expectations are, so organizationcan then shape its monitoring and reporting accordingly, and ultimately selectappropriate metrics to track. How Youll Make anImpact

• Bachelors orAdvanced Degree in Computer Science, Computer Information Systems, Etc.
• Minimum 4+ yearsworking in SOC with strong security technology operations experience
• Experience inworking with Operational Technology (OT) and/or Information Technology (IT),information security or other relevant work experience
• Knowledge ofpenetration testing, network security, and the techniques used to expose andcorrect security flaws
• A broadunderstanding of security technologies including traditional firewalls, NGFW,proxies, SIEM, antivirus software, and IDPs
• The ability toidentify and spotlight vulnerabilities on on-premises and remote networks,correct problems, and prevent security breaches
• Responsibility andconscientiousness, including proper management of patches to defray businessimpact while keeping security protocols up-to-date
• The ability to thinkcritically and innovatively about the security solutions that can keep datasafe while still allowing a business to flourish
• Extensive knowledgeof Advanced Persistent Threats (APT) tactics, technical and procedures
• Advanced industrycertifications for security defenders such as GIAC Certified Intrusion Analyst(GCIA), GIAC Certified Incident Handling (GCIH), CompTIA Advanced SecurityPractitioner (CASP+) or similar
• Experience workingin a Managed Security Services (MSS) or Manage Detect and Respond (MDR)environment
• Solid understandingof computer operating systems, including server operating systems (Windows& Linux)
• Solid understandingof cloud infrastructure (Amazon, Azure, Google)
• Proficient with EDRand SIEM platforms
• Proficiency in atleast one common scripting language
• Solid understandingof network protocols & architecture
• Strongproblem-solving skills
• Strong sense ofethics & values, ability to handle confidential situations with discretion

High PerformanceFunctional Abilities

• Experience workingin fast paced environments, and ability manage workload even during times ofstress or escalated activity
• Comfortable withimpromptu tasking and loosely defined requirements
• Strong timemanagement and multitasking skills as well as attention to detail
• Strong collaborativeskills and proven ability to work in a diverse team of security professionals
• Excellent oral andwritten communications skills

What You Bring As part of theGlobal Control & Digitalization Cybersecurity Team, some responsibilitiesof a Siemens Energy Cybersecurity Data Analyst, specifically around analytics,is to extract valuable information from vast amounts of raw data to constructmodels and draw actionable insights and needs to be competent in all stages ofdata collection and processing, including defining needs, data collection,analyze data, drawing conclusions, create visualizations/interpretations andreporting. Have a working understanding of algorithms, statistical analysis,behavioral analytics, machine learning, and other classes of analysis to solve Cybersecurityproblems in a way that traditional security controls cannot. To do so, one must posse the ability to:

• Identify gaps where data collection isnecessary for analysis
• Examining reports, data, and analytics toidentify suspicious activity and threats
• Understand what is possible to appropriatelydefine collection needs
• Must perform any necessary pre-processing(outlier detection, gap analysis, normalization and so on) and then perform theactual analysis
• Based on the data collected and theanalysis, the analyst should be able to prove or disprove any hypotheses
• Complete understanding of how to makevisuals and report results in a form that is understandable to customers orstakeholders
• Monitor network traffic for securityincidents and events
• Investigate incidents and respond to eventsin real time
• Install and operate firewalls, encryptionprograms, and other security software
• Identify and fix vulnerabilities
• Develop and promote best practices for operationalsecurity
• Conduct threat research
• Perform periodic risk assessments andpenetration tests
• Collaborate withCyber Threat Intelligence and remediation teams
• Security Data Analyticsand Reporting
• Monitor communication channels such ase-mail, messaging and communications for hygiene, indication of potentialcompromise and security incidents
• Monitor OT assets life cycle for cyberhygiene and compliance with industry regulators or internal security standards
• Monitor internal access to devices andinfrastructure components
• Monitor and detect threats to their OTinfrastructure from malware, ransomware, and other persistent threats
• Ensure OT Information assets are patched fortheir vulnerabilities
• Compliance of technical controls againstindustry security framework (IEC62443, NIST, NERC-CIP, NIS Directive)

The Data Analyticsand Reporting Cybersecurity Analyst is also responsible for ensuring they havethe resources necessary to effectively perform high end analysis by acquiringand maintaining tools (internal and external if needed), managing appropriate datastorage, developing, and documenting any processes necessary to performanalysis. Who is Siemens Energy? At Siemens Energy, we are more than just anenergy technology company. We meet the growing energy demand across 90+countries while ensuring our climate is protected. With more than 92,000dedicated employees, we not only generate electricity for over 16% of the globalcommunity, but were also using our technology to help protect people and theenvironment. Our global team is committed to makingsustainable, reliable, and affordable energy a reality by pushing theboundaries of what is possible. We uphold a 150-year legacy of innovation thatencourages our search for people who will support our focus on decarbonization,new technologies, and energy transformation. Our Commitment to Diversity Lucky for us, we are not all the same. Throughdiversity we generate power. We run on inclusion and our combined creativeenergy is fueled by over 130 nationalities. Siemens Energy celebrates character- no matter what ethnic background, gender, age, religion, identity, ordisability. We energize society, all of society, and we do not discriminatebased on our differences. Check out this video to learn more about SiemensEnergy: https://bit.ly/3hD9pvK Jobs & Careers: https://jobs.siemens-energy.com/jobs Gas Services Our Gas Services divisionoffers Low-emission power generation through service and decarbonization. Zeroor low emission power generation and all gas turbines under one roof, steamturbines and generators. Decarbonization opportunities through serviceofferings, modernization, and digitalization of the fleet. Check out this video to learnmore about our Gas Service business https://www.siemens-energy.com/global/en/offerings/power-generation.html

#li-jl2