General Electric Staff Cyber Security Leader in Wilmington, North Carolina
Job Description Summary
We are looking for a Staff Cyber Security Leader, with a focus on delivering and driving security requirements for operational technology (OT) in the Nuclear business. In this role you will work in a team to identify, risk rate, communicate and design secure solutions across our Nuclear Business in the Operational Technology and Information Technology realms (OT/IT), validate security designs, be an OT security evangelist, and provide thought leadership on security best practices for the Nuclear labs, test-cells, and manufacturing areas.
Roles and Responsibilities
In this role, you will:
Provide leadership and domain expertise in Operational Technology (OT) cyber security with a focus on networking, operating systems hardening and cyber security tooling
Develop strategic roadmaps and tactical remediation plans to address cyber vulnerabilities and architectural weaknesses in Nuclear OT, Labs, and Manufacturing
Understand and able to educate the business on Secure Development Life Cycle frameworks
Represent Nuclear OT cyber security architectural needs to leadership
Ensure cyber security tooling and underlying infrastructure aligns to regulatory and security requirements, is in place and functioning correctly
Create metrics and reporting capabilities to continuously monitor identified risk areas
Provide mentoring, and skill set knowledge transfer to team members, product owners, and operations staff
Develop and operate risk assessments and threat models, drive risk management processes to align with enterprise standards
Partner with Nuclear compliance, operations and incident teams to create security architectural requirements
Partner with other Nuclear & GE business teams to develop secure OT technical solutions
Support MVP's through "hands on" technical security knowledge, integration, and development/coding
Ability to work in a fast paced, dynamic environment, with shifting priorities; must be comfortable with change and actively driving improvements
Understand how new technologies impact the current environment
Champion the adoption of new technologies and drive the implementation into the GEH environment
Bachelor’s Degree in Computer Science or in STEM” Majors (Science, Technology, Engineering and Math) OR 8 years of Cyber Security experience
Minimum of 5 years of professional experience with cyber security related technologies and tools
Certified Information Systems Security Professional Certification (CSSIP)
Experienced in navigating through ambiguity and prioritizing conflicting asks
Knowledgeable in NIST frameworks relative to securing Industrial Control Systems (ICS) and Building Manufacturing Systems (BMS)
Understand Network security, Anti-malware solutions, and Firewall technologies as it relates to OT environments
Knowledge of ethernet based protocols relating to TCP/IP stacks, packet captures, incident detection/response
Familiar with Windows OS Architecture, domain controllers, and system hardening principles.
Securing Linux/Unix based systems
Understand and familiar with Industrial Control System Technologies and concepts, including Programmable Logic Controllers, Human Machine Interfaces, and Data Historians
Understand and familiar with OT based protocols including BACnet, PROFINET, ModBus, and Ethernet/IP
Need to be innovative in security designs and approaches to solutions
Knowledge of application risk identification and evaluation techniques
Knowledgeable of common Secure Development Lifecycle frameworks and concepts, and common implementations such as the Microsoft SDL or OWASP Software Assurance Maturity Model
Knowledge of common software cyber security issues, such as the OWASP Top 10 and CWE/SANS Top 25
Able to understand and decipher identified security vulnerabilities, assist with prioritization in accordance with CVE information, and provide guidance to business partners on vulnerability prioritization and remediation activities
Knowledge of Cyber Security and full knowledge of multiple related engineering functions
Scripting knowledge including bash, PowerShell, python etc
Results-focused visionaries that consistently deliver high-quality solutions.
Strong personal organization and project management skills
Leading contributors that are self-driven and willing to challenge the status quo and focus on services, data, analytics, and content
Understanding/Knowledge of global frameworks and standards: NIST, ISO, FIPS, , CMMC, DFARS, etc.
Green Belt / Black Belt Certified or equivalent Quality Certification (GE Employees ONLY)
DTLP Graduate (GE Employees Only)
Ability to “roll up your sleeves” and complete tasks as necessary
Demonstrated ability to work in highly matrix environment
Strong critical thinking and problem-solving methods
Strong presentation and communications skills
Additional Eligibility Qualifications:
- GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). This role is restricted to U.S. persons (i.e., U.S. citizens, permanent residents, and other protected individuals under the Immigration and Naturalization Act, 8 U.S.C. 1324b(a)(3)) due to access to export-controlled technology. GE will require proof of status prior to employment.
This role is restricted to U.S. persons (i.e., U.S. citizens, permanent residents, and other protected individuals under the Immigration and Naturalization Act, 8 U.S.C. 1324b(a)(3)) due to access to export-controlled technology. GE will require proof of status prior to employment.
GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer (https://assets.phenompeople.com/CareerConnectResources/GE11GLOBAL/en_global/desktop/assets/images/poster_screen_reader_optimized_w_supplement.pdf) . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
Relocation Assistance Provided: No