Descripción General:
**Responsabilidades**:
The **Cyber Defense Specialist** defends against cybersecurity incidents and identifies, analyzes, communicates, and contains incidents as they occur, with a focus on the Celanese IT environment, and working in the OT industrial cyber security realm as needed.
This position will involve the following activities:
- Monitoring and responding to security events from our SIEM/SOAR, especially relating to IT an OT systems.
- Coordinating cyber security incident response activities with site PCN resources and the ICS Security team as needed
- Creating, maintaining new alert content, logic and rules to detect events of interest.
- Assisting in the design, documentation, and execution of security awareness programs
- Participating in the risk-based analysis of security controls and requirements
- Providing technical assistance to site PCN resources or other IT functions with regards to security objectives and requirements
- Providing off-hour cyber security incident response support as needed.
Competencias:
**Required Qualifications**
- 1-4 years of experience in OT or IT security or similar position
- Team oriented with effective written and oral communication skills.
- Excellent English communication skills (written and verbal)
**Desired Qualifications**
- Bachelor's degree in computer science, Information Technology, or related field.
- Expertise in the Monitoring, Cyber Incident Response, Digital Forensics (DFIR),
- Knowledge of Cyber Kill Chain, MITRE ATT&CK® MaGMa Framework, Risk Management and Security Management (Cyber Incident, Patch Management)
- Solid understanding of network protocols (TCP/IP, UDP, Modbus, OPC, PROFINET, WiHART, etc.)
- Understanding of Cloud technologies Linux or Microsoft OS, certifications are big plus.
- Possession of Industry Certifications ISACA, GCIA, SANS, ICS2, EC-Council, other relevant cyber security certifications.