Stafford, /, United Kingdom Employment

GE Vernova is hiring a Senior Network & Cybersecurity Engineer

About the Role

GE Vernova is hiring a Senior Network & Cybersecurity Engineer to join a team defining substation LAN networks and ensuring cybersecurity compliance for our HVDC Substation Automation Systems. You will tackle large global projects, support R&D technical compliance with international standards, and help build the roadmap for the future.

What You'll Do

Work with the Global Network & Cybersecurity Leader to create and implement a comprehensive HVDC Control & Protection network & cybersecurity strategy.
Lead and mentor a global team of network & cybersecurity professionals.
Act as the point of contact for all cybersecurity and networking matters in a project environment, including evaluating third-party solutions.
Support Tendering teams during the bidding process for customer cybersecurity and networking requirements.
Support the R&D / NPI team with topics including IEC 62443 compliance, threat modelling, and incident response.
Ensure Secure Deployment Guides and Security Assurance Plans are followed by all relevant project stakeholders.
Perform hardening in a substation environment according to relevant CIS and NIS guidance.
Ensure technical documentation aligns with engineering policies and procedures.
Justify solutions and analysis to customers and technical audiences.
Build functional infrastructure from the ground up, including networking, virtualization, and server OS configuration.
Lead the design, configuration, and testing required to deliver on time and within budget.
Follow the department’s standard design practices, engineering reviews, and guidelines.
Oversee testing and FAT witnessing of the Control System.
Assist site activities for the installation and commissioning of the control system LAN network.
Support site testing and customers, including site visits to fix issues.

What We're Looking For

A degree in Electronics, Electrical engineering, or a related field.
A strong background in Networking & Cybersecurity.
Strong experience in control and protection system design.
Knowledge of industrial communication networks such as IEC61850 and Ethernet-based protocols.
Knowledge of communication networks security/hardening and cybersecurity best practices.
Excellent knowledge of commonly used Layer 2 & 3 protocols such as IPv4, OSPF, LACP, DMZ, VPN, DMS/ADMS, DNP, IEC, and Modbus.
Experience relevant to electrical power systems and Substation automation engineering.
Leadership & Mentorship: The ability to lead, coach, and inspire a team.
Strategic Thinking: A forward-thinking approach to developing a robust security posture.
Technical Proficiency: Deep understanding of network protocols, cybersecurity tools, and threat prevention technologies.
Risk Management: The ability to identify, assess, and mitigate cybersecurity risks.
Adaptability: Staying updated and adaptable to new and evolving cyber threats.
Communication: Excellent verbal and written communication skills to explain complex issues to technical and non-technical stakeholders.
Collaboration: The ability to work effectively with a larger security team and other departments.

Nice to Have

Knowledge of a range of Cybersecurity regulations such as EU NIS, NERC, and BDEW.
Deep practical knowledge of the IEC 62443 standard.
Familiarity with secure remote access architectures using VPN and PKI technologies.
Knowledge of virtualization platforms such as VMware, HyperV, and Proxmox.
Knowledge of configuring server operating systems.
Knowledge of configuring next generation firewalls.
Knowledge of Intrusion Detection Systems.
Knowledge of anti-malware and disaster recovery tools.
Knowledge of standard cyber topics such as VPN technologies, Secure Network Access, Endpoint Security, and Network Infrastructure Protection.
A strong background in Distributed Control Systems / Substation Automation.
A strong background in designing and configuring Substation LAN’s, especially within an IEC61850 environment.
Knowledge of industrial protocols (IEC 61850, IEC 101/104, PTP, OPC UA, DNP3, Modbus TCP/IP) and methods to diagnose/debug using Wireshark.
Experience with one of GE Reason, Westermo, or Meinberg products.
Knowledge of industrial control system vulnerability management.
Knowledge of the industrial patch management process and its relation to vulnerability management.

Technical Stack

Standards: IEC 62443, IEC 61850, IEC 101/104
Security & Access: VPN, PKI, Next Generation Firewalls, Intrusion Detection Systems, Anti-malware tools, Disaster recovery tools
Virtualization: VMware, HyperV, Proxmox
Network Protocols: IPv4, OSPF, LACP, DMZ, PTP, OPC UA, DNP3, Modbus TCP/IP
Tools: Wireshark, GE Reason, Westermo, Meinberg

Team & Environment

You will be part of the team that defines substation LAN networks and works with the Global Network & Cybersecurity Leader.

Required Skills

IEC 62443VPNPKIVMwareHyperVProxmoxNext generation firewallsIntrusion Detection SystemsAnti-malware toolsDisaster recovery toolsIEC61850NetworkingCybersecurityControl system designProtection system design

Need to work legally in Thailand?

Work permits without the paperwork nightmare

Thai immigration rules are strict and easy to get wrong. SVBL handles the bureaucracy — correct visa type, proper documentation, timely submissions. You focus on your work.

Right visa type for your situation

Document preparation & submission

Deadline tracking & renewals

Direct liaison with immigration

Talk to an expert

10+ years experience

About company