Cyber Safety Manager at AngloGold Ashanti

Your challenge as the OT Cyber Safety Manager

As the OT Cyber Safety Manager, you will work on closely with the relevant IT & OT Technical teams as well as the various risk teams, and report directly to the VP for Cyber Safety. You will be challenged to improve the overall visibility of our global OT operations in line of best practice cyber safety and security measures.

Qualifications and Experience:

• Computer Certifications such as GICSP / CISSP / CISSM and others*
• Degree or Post Degree Qualification in Computer Engineering*
• Deep knowledge of ICS / OT deployments
• Skilled Enterprise / Cyber Security Architecture
• Skilled Network Knowledge
• Security Governance / Risk Knowledge (Security Frameworks) NIST, ISA62443
• Technical Writing Skills (TOGAF)
• Skilled researcher
• Hands on experience relating to Incident response planning.

Operational, administrative, and project-based exposure within a medium to large organisations where you have been exposed to cutting edge OT technology and large information data systems.

Advantageous but not mandatory

What are you going to do?

Security activities across one or more of the following areas:

• Conduct global site surveys to help colleagues identify the systems in their OT environment. Note we have sites on every continent and surveys will be both physical and remote using advance video systems.
• Facilitate risk assessments to assess and mitigate the identified vulnerabilities at all OT environments.
• Develop OT policies and procedures to help customers reduce the risk of a security breach at an installation and sustain OT safety and security.
• Work closely with both the Cyber Risk Team, Group Internal audit teams and conduct where needed audits and gap analysis to assess cyber risk compliance against policies and procedures to ensure ongoing protection against cyber incidents.
• Develop remediation plans to reduce cyber risk based on detected findings.
• Provide general OT security advice to assist our operating sites in addressing OT security issues and ensure safe, continuous production operations.
• Act as a technical lead in remediation projects with the support from the Project Management Office.

What do you bring?

You Will Be Comfortable Working Alone or As Part Of a Team To Use Your Experience In One Or More Of The Following

• Prior experience working in OT environments, especially in instrumentation, industrial IOT and or SCADA systems across a variety of verticals that includes Mining, Energy, Oil and Gas, Chemical, Pharmaceutical and/or related industries where human safety is paramount.
• Experience working in an advisory or consultancy capacity or within OT environment to establish roadmaps to improve our current security posture and developing the functional/operational processes and procedures to support our mission
• Prior experience leading an assessment or evaluation of an OT environment to include execution of the assessment, analysis of results, and formulation of a final report for dissemination to key stakeholders
• Prior experience evaluating and assessing large organisations from the standpoint of OT
• Relevant certifications (GICSP, CISSP, etc) and knowledge of industry best practices and standards (IEC-62264 / 62443, NIST and other related standards)
• Relevant and demonstrable experience in current cyber security monitoring tools required to secure OT operating units.
• Experience in OT instrumentation & automation systems and network administration.

In Addition, You Bring

• Completed relevant higher vocational or university education
• A minimum of 3 years of experience in OT Cyber Risk Management with demonstratable knowledge on how to reduce OT Cyber risk effectively across multiple operations.
• Passionate Interest in: Cyber Security; - Process models; - OT security; - Security standards and guidelines
• The ability to articulate risk modelling and able to communicate technical concepts in simple terms both verbally and in written reports
• Fluent in English with an added advantage if you are fluent in either Portuguese, Spanish or French.