U. S. Steel is committed to fostering an inclusive workplace culture and celebrate the diversity of our employees.
U. S. Steel is committed to fostering an inclusive workplace culture and celebrate the diversity of our employees.
The OT Security Specialist is responsible for helping coordinate and complete cybersecurity related initiatives. This includes working with and attending plant operations and process control meetings as a liaison between operations and the corporate cybersecurity team. In addition, this role would support plant OT projects to identify cybersecurity related needs as well as identify and assist in remediation of risk for non-compliant networks and devices. This position will be on site at the various Mon Valley Complex locations as well as the Research building in Munhall.
KEY RESPONSIBILITIES:
Responsible for leading and motivating team members at the facility to protect vital infrastructure and control systems.Work on-site at designated plant location, attend plant operations, and plant processes (i.e., process control) meetings, and serve as a liaison between operations and corporate Cybersecurity team.Work closely with process control system SMEs and operational staff to design, implement, and support the security of OT networked systems.Focus on vulnerability management of OT environments and assist in communicating, evaluating, and prioritizing OT risk.Support plant OT project reviews and identify cybersecurity related needs.Participate in preparation, review, and maintenance of documents, policies and standards governing the security operations for OT equipment and networks.Facilitate maintenance of accurate inventories of OT environments as well as completion of OT system boundary security assessments.Facilitate the third party/vendor cybersecurity process.Identify and assist in remediation of risk for any non-compliant network or device (i. e., wireless, IoT, etc.)Assist in the creation, review, and maintenance of response and recovery plans for OT environments.Assist in communicating, evaluating, and prioritizing OT risk.Assist with the proliferation of cyber procedures and implementation of the NIST framework. Participate in OT security incident response activities.Support corporate-wide OT project initiatives and OT Security Specialists at all locations.
EDUCATION, KNOWLEDGE, SKILLS AND ABILITIES:
Candidates will be considered based on a combination of education, certifications, and relevant experience.
Minimum Requirements:
Degree in Computer Science or similar technical field.Demonstrated track record of successfully motivating and collaborating with cross-functional teams to achieve strategic goals.Strong understanding of technology including experience securing IT or OT systems.Understanding of IT and OT network communication protocols (including TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET) and ability to perform packet analysis.In depth understanding of operating systems, network/system architecture, and IT architecture design.Excellent written and verbal communications skills.Skilled at translating technical jargon into clear, accessible language to facilitate understanding of risk and technical concepts.Demonstrated initiative-taking approach to ownership of tasks and responsibilities ensuring deadlines are met and quality standards are maintained.Take initiative to identify and pursue opportunities for improvement and growth.Maintain a high level of enthusiasm and positivity in the face of challenges.Ability to work in a challenging environment.Experience with and a proven track record in managing operations across multiple facilities to ensure seamless coordination.
Desired Requirements:
Hands on experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) software, and Distributed Control Systems (DCS). Process safety background.
WORK ENVIRONMENT/ PHYSICAL REQUIREMENTS:
Ability to work safely in a dynamic, heavy industry environment with use of PPE as warranted.Constantly operates a computer.Must be able to remain stationary 50% of the time.Ability to travel across multiple facilities (25-50%)