General Electric Cyber Security Lead Engineer in Hyderabad, India
Job Description Summary
The Cyber Security Engineer will be a team player, contributing to the ongoing delivery of existing product solutions, and the development of new products, focused on product security in Monitoring & Diagnostics division of Grid Automation business. The task is full cycle, from the specification of new solutions, through to test and delivery.
Cyber Security is an exciting growth area of the business and the individual will have the freedom to develop the business’s R&D approach, particularly in introducing improved tools and automated test processes.
Typical Project Types
• Substation SCADA Systems
Contribute to the execution of the Secure Development Lifecycle (SDL) for all the M&D products and projects. This includes security assessments, threat modeling, static code results analysis, security requirements, high level design and test strategy specifications, secure deployment guides.
Participate in design and test specifications review for the M&D products, to cover the cyber security perspective (ensure secure design and implementation requirements are met).
Coordinate with M&D software teams to ensure all relevant artifacts are ready for the NPI technical reviews.
Perform cyber security reviews for all M&D NPI technical reviews that do not require design office representation.
Create and maintain the cyber security compliance documents as needed (e.g. NERC CIP, IEEE 1686, IEC 62443). Perform M&D roadmap documentation on our products aligning with IEC 62443.
Compliance with all relevant industry standards
Own the cyber security roadmap execution (ensure progress in M&D through collaboration with M&D program line leaders and the GA cyber security team, as well as through assisting the software teams where needed).
Implement the cyber security vulnerability and incident process for M&D products.
Bachelor’s Degree in Engineering, Computer Science, or Information Technology from an accredited university
Minimum 7 years of experience in cyber security design, implementation, and applications.
Minimum 4 years of experience in software design and implementation.
Demonstrated knowledge and understanding of network communications protocols in the TCP/IP network stack.
Experience with secure software development (SDL)
Secure design and implementation requirements, techniques, and practices
Experience with cyber security aspects, such as
Symmetric and asymmetric cryptography and PKI infrastructure
LDAP, RADIUS, TLS, SSH, SFTP, RSA, HTTPS
Encryption and Code Signing
Knowledge of cyber security standards and regulations, such as IEC 62443, NERC CIP, IEEE1686
Good writing and oral communication skills
Nice to have skills:
Experience with penetration testing
Experience with threat modeling techniques and tools
Experience with secure testing, including tools for static code analysis, fuzzing
GE is an equal opportunity employer and supports diversity.
GE (NYSE:GE) drives the world forward by tackling its biggest challenges. By combining world-class engineering with software and analytics, GE helps the world work more efficiently, reliably, and safely. GE people are global, diverse and dedicated, operating with the highest integrity and passion to fulfill GE’s mission and deliver for our customers.
GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Disclosure of your Gender or Sexual orientation is completely Voluntary and not mandatory.
Relocation Assistance Provided: Yes