Norfolk Southern Security Architect - PTC/ICS in Atlanta, Georgia
The primary responsibilities of the Security Architect are to design, enhance, and implement information security systems with specific focus on the industrial control system (ICS) and positive train control (PTC) technologies; Develop security policies, standards and procedures to enhance the overall posture of ICS and PTC information security; Conduct risk assessments to ensure the confidentiality, integrity and availability of information assets across the Norfolk Southern enterprise
4-yr college degree in Computer Science, Engineering, Physics, or Mathematics.
Designs and implements information security systems that supports Information Security’s roadmap for risk management in the ICS/PTC environment
Build security designs, standards and procedures to support implementation of the security architecture strategic roadmap for ICS/PTC environments
Develop, document, and enforce security policies, standards, procedures, and guidelines relative to the enterprise PTC/ICS landscape
Functions as subject matter expert for implementations of ICS/PTC Information Security Systems
Coordinate deeply technical and environment-specific solutions for numerous issues across IT Applications, Mechanical, Operations, and Communications & Signaling
Track development in industry forums to meet implementation deadlines
Participate in industry interoperable committees for standards and specifications development
Collaborate with the Security Architecture team and perform Security Architecture duties as applied to ICS/PTC, including:
Review and approve security variances to established Computer Compliance policies
Review and approve requests for firewall changes
Conduct risk assessments of enterprise initiatives, including external service providers and suppliers
Monitor industry security updates, technologies and best practices to improve corporate information security
Assists in the execution of, and response to, regulatory changes affecting information security. Follows up on developed compliance plans to ensure completion
Provide assistance incident response team for threats for computer/network forensics investigation
Connecting legacy systems
Electro-mechanical migration to electronics
Skills & Abilities:
Identifying and Considering Alternatives
Shift Work: No
Weekend Work: Yes
Travel Required: 0 - 2 Days per Month,
Norfolk Southern Corporation(NYSE: NSC) is one of the nation’s premier transportation companies. Its Norfolk Southern Railway Company subsidiary operates approximately 19,500route milesin 22 states and the District of Columbia, serves every major container port in the eastern United States, and provides efficient connections to other rail carriers. Norfolk Southern operates the most extensive intermodal network in the East and is a major transporter of coal, automotive, and industrial products.
We are a team of more than 28,000 employees working together to maintain our reputation as "The Thoroughbred of Transportation". As an industry leader, Norfolk Southern offers a competitive salary and an excellent benefits package.
Norfolk Southern is an equal opportunity employer including veterans and disabled.