Job Description: Digital Operation Technology (OT) Security SME

Job Title: Manager/Senior Manager Subject Matter Expert (OT Security)

CLIENT: AVERIS https://www.averis.biz

LOCATION

SAO PAULO or BAHIA

Context:

If you live and breathe digital, we want to offer you a super challenging and exciting role in Ace
Digital. Ace Digital serves several companies under the RGE group (Royal Golden Eagle
http://www.rgei.com). RGE manages more than US $20Bil in assets across Palm, Pulp, Paper,
Fibre and LNG.

Our job is to accelerate the impact of digital transformation by partnering closely with our
business units. We prototype ideas, test them in the real business scenarios, and quickly adapt
the solution. Combining data science, human-centered design, and the latest rapid development
techniques—such as agile, micro services and DevOps—we help Ace Digital deliver breakthrough
products, experiences, and business models built on Digital.

We are Ace Digital!!!

Position Summary:

The OT Security SME plays an integral role in defining and assessing the organization's IT-OT
security strategy, architecture and best practices. The SME is expected to effectively
translate business objectives and risk management strategies into specific security processes
enabled by latest OT security technologies, tools and platforms. Together with the team drives
the ambition to position Ace customers as the undisputed leaders in the space of plantation,
manufacturing and supply chain; and to enable delivery of highly personalized, real-time
experiences that customers increasingly expect.

Work as a team member alongside the Platform Managers, Product Managers, Project Managers,
Software Engineers, User Experience Leads, and other supporting team members to deliver a
complete OT-IT-IOT solution.

Operate in a hyper-collaborative way and follow these guiding principles:

 Put customers first

 Value common sense and simplicity over complexity
 Make decisions quickly and move nimbly
 Celebrate diverse ideas
 Succeed and fail together as a team
Key Responsibilities:

 Researches emerging threats and vulnerabilities, and supports the creation of IT-OT
security strategy, roadmap, architecture, policies, standards and best practices for
customer.
 Responsible for identifying and assessing OT security gaps in our customers’ industrial
control systems (ICS) and then recommend mitigation solutions.
 Addressing all points of security lifecycle such as prepare, protect, detect, respond and
recover from cyberattacks.
 Evaluating vendor’s security solution and propose the best fit based on our customer’s
requirements.
 Must be proficient with industrial control systems such as PLC, DCS, HMI or SCADA
systems and networks such as OPC, Modbus TCP, HART, and Foundation Fieldbus.
 Work closely with IT security personnel and OT engineers to ensure the agreed IT-OT
security architecture, SLAs, KPIs and business models are met.

Skills & Qualifications:

 Minimum 5 years of experience in ICS systems and ICS security practices with exposure
to OT technologies such as PLC, DCS, HMI or SCADA systems.
 Hand on experience in industrial protocols such as OPC, Modbus TCP, HART and
Foundation Fieldbus.
 Working knowledge in one or more of the followings: ISA 99/IEC 62443, GICSP, CSSA,
NIST SP 800-82, ISO 27001, and NCMS-ISP.
 Experience in deploying security practices, technologies and platforms such as risk or
vulnerability assessments, antivirus software, firewalls, intrusion detection systems,
centralized alert logging and monitoring in large manufacturing environments.
 Experience in deploying security practices in process manufacturing industry such as
Pulp and Paper Manufacturing, Palm Oil refining and Viscose Fibre Manufacturing will be
a bonus.
 Entrepreneurial approach and willingness to accept challenges and responsibilities
 Ability to operate in a start-up mentality and unstructured environment.
 Energy, drive and passion to work, and operate in a digital world.
 Excellent collaboration, interpersonal and communication (written and verbal) skills.
 English a must.

Education:
 Relevant certification in one or more of the followings: ISA 99/IEC 62443, GICSP,
CSSA, NIST SP 800-82, ISO 27001, and NCMS-ISP is highly desirable.