Careers

Security Architect

KS-Overland Park

Req#: 20615BR

Date published: 13-Nov-2014

Opportunity: Experienced Hire

Business Line: Telecom

Business Plan: ENS

Level: 132

The Telecommunications Division delivers telecommunication infrastructure solutions to utilities, local and state government agencies and the commercial wireless industry. Through a unique combination of experience, expert resources and innovative solutions, Black & Veatch supports the entire range of both legacy and emerging technologies used in today’s wireless and wireline networks, voice, video, Internet and data systems and utility automation.

Principal Duties and Responsibilities:
• Responsible for the system development and infrastructure units in identifying security risks and the appropriate procedural and technical controls for security of day-to-day control systems operation, and creation of end-to-end application security policies on control system networks
• Interact with clients (including non-technical decision makers) to communicate solutions and value proposition.
Design, implement and support security-focused solutions and services, SIEM, and secure remote connectivity across SCADA environment networks.
• Provide subject matter expertise and technology support for all project and application related Information Security needs and security compliance efforts.
• Develop training materials for general security awareness and specific security technology training.
• Understand, advocate, and support IT Security strategies
Mentor others on the Telecommunication team
• Leading development of Utility Smart Grid Security standards and deployment practices

Minimum Qualifications:
• 10+ years in Information Technology and Information Security as Security Engineer, Security Consultant or Application Architect with a focus on security solutions.
Detailed knowledge of common networking protocols and their relevant security issues (TCP/IP and related protocols, encryption at various layers of the OSI model, understanding of the OSI model itself, etc.)
• Experience performing security work involving SCADA at utility-sector organizations.
• Direct experience with regulatory requirements related to the power industry (NEI, NERC CIP), including both current and soon-to-be effective versions of those requirements.
• Familiarity with security frameworks, standards and approaches like COBIT, NIST 800-53, etc.
• Knowledge of data classification and its impact on the security design of networking solutions.
• Thorough understanding of security architecture and
• Experience with security policy development and impact upon data networking infrastructure planning and deployment, particularly in process control/SCADA environments
• Excellent verbal and written communication skills toward both technical and non-technical audiences and the ability to translate between both categories of client personnel

Preferred Job Qualifications:
• Direct firsthand knowledge of NERC CIP, NIST standards related to overall security, and/or security compliance regulations from other industries
• Experience gathering requirements from different business units, stakeholders and engineering teams.
• Experience providing engineering and security standards support for large-scale complex data networks
BS degree in Information Security/ Computer Science/Electronics and Engineering /Information Technology
• Experience implementing and/or selecting solutions to meet security needs, including requirements creation
* Have practical, hands on experience with the deployment and implementation of various vendors (Cisco, Juniper, Checkpoint, etc.) security products and devices, such as Firewalls, IDS/IPS appliances, two factor authentication services and products, etc.
• Understanding of security auditing practices for network infrastructures