Logo
Daikin Applied

Cybersecurity Analyst II - OT Vulnerability & Security

Daikin Applied, Plymouth, Minnesota, 55447


Make your mark at the world's largest HVAC company Daikin Applied is seeking a talented Cybersecurity Analyst II. The Cybersecurity Analyst II is a cybersecurity professional who focuses on vulnerabilities and overall security analysis. This role will mainly focus on Operational Technology and Industrial Control Systems environments. This is a hands-on technical position and needs some experience performing cyber security functions and maintaining security systems across the operational business segments. You are responsible for assisting to secure Daikin's Operational Technology (OT) systems and environments, that include Industrial Control Systems, the associated networks, and communications. Come be a part of an exciting journey at Daikin Applied, where innovation and excellence drive our every endeavor Location: Plymouth, MN - Hybrid What you will do: Maintain a view of the company's overall cybersecurity architecture, to ensure appropriate OT domain coverage of security capabilities and identify potential gaps for remediation Ensure OT domain architectures are aligned with business, regulatory, technical, operational, and strategy objectives Collaborate with owners of security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, configuration management, privileged identify management, etc. to ensure that all assets in the OT environments are being managed Reviews simple OT architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations to ensure protection of critical Industrial Control Systems (ICS) Responsible for hardening OT devices in coordination with the OT teams and IT Responsible for training and assisting technical staff in cybersecurity techniques and applications Ensure effective OT security architecture governance is applied to the domain including standards, processes, and leading practices, based on a common "language" to inform repeatable and secure design Ensure business divisions and local business entities use secure methods & standards to develop, implement, and maintain system architectures that support OT cybersecurity policies & standards Develop OT domain specific actionable control lists, implementation guidelines, and required levels of protection that align with enterprise level cybersecurity control framework and the criticality of the systems Perform regular vulnerability assessments and conduct periodic assurance reviews across the OT cybersecurity architecture domain to ensure that designs are built and implemented to the agreed OT cybersecurity architecture standards Collaborate with the Governance Risk and Compliance principal to evaluate OT security measures, metrics, architecture exception requests and develop & track mitigation plans for the resolution of risk Keep abreast with emerging OT security architecture trends and issues; and understand OT business related cybersecurity risks. Investigates and recommends appropriate corrective actions for information security incidents and support requirements to assist in developing OT strategic plans and OT architecture/process requirements What's in it for you: Medical/Dental/Vision coverage, PTO, 401K match, support for community involvement and much more The ability to make an impact and shape your career with a company that is passionate about growth The support of an organization that believes it is vital to include and engage diverse people, perspectives, and ideas to achieve our best Minimum Qualifications: Bachelors Degree in Information Systems, Computer Science, Information/Computer Security, Engineering or a related technical discipline (i.e. STEM). Four years of experience in the IT field or an industry with reliance on technical expertise in lieu of degree 2 years supporting PLC, DCS, SIS, HMI or SCADA systems. Experience supporting and troubleshooting industrial protocols such as OPC, Modbus TCP, HART, oundation Fieldbus Experience deploying or supporting security practices and technologies such as risk or vulnerability assessments, antivirus software, firewalls, intrusion detection systems, centralized alert logging and monitoring in ICS environments Comprehensive working knowledge of one or more of the following: IEC 62443/ISA 99, ISO 27001, NIST SP 800-82, CPNI Good Practice Work visa sponsorship is not available for this position Preferred Qualifications: Certifications: CompTIA Security Microsoft, ISACA, GIAC and (ISC)2 or similar certifications 3 years supporting PLC, DCS, SIS, HMI or SCADA systems. Experience supporting and troubleshooting industrial protocols such as OPC, Modbus TCP, HART, Foundation Fieldbus Programming Experience working with or related coursework .NET, HTML, SQL, Java, Java scripting, Ajax, NODE.JS, JQuery, REST API's, Angular or Object Oriented Design LI-RS1, LI-hybrid Equal Opportunity Employment: It is the policy of Daikin Applied to provide equal employment opportunity (EEO) to all persons regardless of race, creed, color, religion, gender, gender identification, sexual orientation, age, national origin, disability, protected veteran status, genetic information, marital status, membership or activity in a local commission, or any other characteristic protected by federal, state or local law.