S/No Required Skill

Conduct vulnerability assessments on ICS/SCADA environments, for both

1 compliance and security
Industrial cyber security engineer must display good understanding of industrial
2 control system infrastructures using
3 Domain Controllers
4 Firewalls
5 VPN
6 Data Loss Prevention
7 IDS/IPS – Intrusion Detection and Intrusion Prevention
8 Security Audits
9 ICS Cybersecurity audits and assessment using ISA 62443 and NIST.
10 Vulnerability assessment.
11 Developing ICS Cybersecurity policies and procedures
12 Patch Management System
13 Backup and Recovery System
14 Domain Controller/Active Directory
15 Firewall, Routers, Switches
16 Anti-Virus Softwares like Mcafee ePO
17 Hardening expertise
Experience with Firewalls (functionality and maintenance), Office 365 Security,
18 VSX, and Endpoint Security.
19 Great awareness of cybersecurity trends and hacking techniques.
Your capabilities to identify security vulnerabilities and mitigate opportunities
20 within the security and OT/IT infrastructure would be critical
Analyzes network & IT/OT system response and determines tuning
21 recommendations to improve performance
Analyzes network & IT/OT system response and determines tuning
22 recommendations to improve performance
23 BAS (Building Automation System)
24 PCD (Process Control Dynamics),
25 Security Information and Event Management (SIEM) systems
26 Intrusion Detection/Prevention systems (IDS/IPS)

27 Public Key Infrastructure (PKI), Identity and Access Management (IDAM) systems
28 Security Automation and Orchestration
29 Deception technologies and application controls
 Demonstrates understanding of project management processes, including the
30 planning of action items and resources, including RFI/RFP.
Well-rounded knowledge of system and network security techniques and
31 standards, NIST CSF, 800-53, 800-82.
32 Endpoint Detection and Response (EDR)
33 Information Protection
34 Cloud Security (AWS/Azure)
35 Threat Intelligence Platforms
Certifications in Information Security and IT disciplines such as MCSE, RHCE, CISSP,
36 CEH, Network +, CISSP
Experience with system communications protocols (TCP/IP, UDP IP, HTTP, FTP,
37 SFTP, USB, MODBUS TCP, PROFIBUS, BACNET, RS 232/485, XMPP).
Experience in Python, Bash, PowerShell is preferred and C, C++, Visual C, Java, Java
38 Script, SQL, a nice to have.
39 Experience with Virtual Private Networks (IPSec)
Experience or knowledge with remote access VPN, multifactor authentication, and
40 FW user authentication
41 Experience or working knowledge in Network Address Translation
42 FortiGate FWs
43 Experience with FW syslog configuration and SIEM is preferred
 Status Status (%) Status Icon Knowledge Acquired

Not Started 56 56

Not Started 35 35
Not Started 50 50
Not Started 50 50
Not Started 35 35
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50

Not Started 50 50
Not Started 50 50

Not Started 50 50

Not Started 50 50

Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50

Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50

Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50

Not Started 50 50

Not Started 50 50

Not Started 50 50
Not Started 50 50

Not Started 50 50
Not Started 50 50
Not Started 50 50
Not Started 50 50
Status
In Progress
Completed
Not Started