CNS System Cybersecurity Specialist

CNS Systems and Applications Cybersecurity • Provide engineering support for cybersecurity operations, including the deployment, operation, maintenance, and full documentation of cybersecurity tools. • Maintain the cybersecurity of CNS server environments and application servers throughout their lifecycle, from deployment to decommissioning, ensuring protection, compliance, and risk management. • Develop software within *Nix OS's (Unix, Linux, BSD, macOS) and Windows environments, ensuring cybersecurity best practices are integrated. • Maintain and secure virtualization platforms such as VMware, KVM/QEMU, MS Hyper-V, and container technologies like Docker. Architect and implement enterprise cybersecurity solutions, including IAM systems, vulnerability management tools, and secure configurations for MS Active Directory and GPOs. • Perform testing on web-based applications developed in Java or .NET frameworks, focusing on cybersecurity aspects. • Conduct dynamic application or software assessments, including web application penetration testing and vulnerability testing. • Program and secure embedded systems, including control systems with low memory resources, SoCs (like Raspberry Pi devices), and GPIO interface code. • Translate cybersecurity policies and standards (e.g., ISO 27001:2013, NIST CSF, PCI DSS, NIST SP 800-82) into actionable technical controls and ensure their implementation for CNS systems. Cybersecurity Architecture • Assist in developing cybersecurity strategies focused on technology and process improvements to protect CNS-related information assets. • Participate in the identification, evaluation, and integration of cybersecurity systems, applications, and processes aligned with best practices to enhance the CNS infrastructure. • Keep up to date on the latest developments and best practices in cybersecurity to contribute to the continuous improvement of the CNS cybersecurity infrastructure and capabilities. Cybersecurity Operations • Continuously monitor and enforce cybersecurity controls to ensure the confidentiality, integrity, availability, and accountability of CNS systems, applications, and software, while ensuring compliance with applicable regulations and standards. • Facilitate cybersecurity awareness initiatives and provide training to relevant stakeholders on new CNS systems and processes to ensure adherence to best practices. • Conduct regular cybersecurity assessments, such as penetration testing, vulnerability management, and other preventive interventions, to maintain the security of CNS systems and software. • Ensure adherence to cybersecurity incident management guidelines and processes, including proper reporting, escalation, and resolution of incidents. Policies, Processes, and Procedures • Conduct day-to-day activities while ensuring compliance with organizational policies and procedures. • Contribute to the identification of opportunities for continuous improvement of CNS systems, applications, and processes, considering leading practices, changes in the business environment, cost reduction, and productivity improvementKnowledge and Experience • Minimum 6 years’ experience in Cybersecurity, Information Security, or a related field with a focus on CNS or critical infrastructure systems. Education and Certifications • A Bachelor’s Degree in Computer Science, Cybersecurity, or a related discipline is required. • one certifications is required in EDR, SIEM, or Vulnerability Management tools. Examples include: CySA+, NSE 4, Splunk Core, CISSP-OPS, GSEC, and BTL1