Engineer/Senior Engineer, Network/Server OT

Description

• Ensure high availability, redundancy, and failover across T-ROC and remote sites; manage DR/BCP strategies, tabletop exercises, and recovery runbooks.
• Design and enforce network segmentation between IT and OT, least-privilege access, MFA, secure remote/vendor access, and Zero Trust principles where applicable.
• Coordinate with vendors and OEMs for support, RMA, security advisories, and product roadmaps.
• Configure and manage HP/HPE/Intel or similar server platforms and Synology NAS and similar for storage, backup, and replication; optimize performance and capacity planning.
• Working with IT and Compliance, maintain security controls aligned to NERC CIP, with practical application in OT environments.
• Build and support virtualized environments (VMware/Hyper-V), Windows Server, Azure and AWS environments as required for OT environments.
• Collaborate with Operations, Compliance, and Asset Management to align changes with grid operations, dispatch needs, and regulatory obligations.
• Support T-ROC infrastructure, including EMS/SCADA networks, historian, time synchronization (NTP/PTP), and reliable telemetry paths.
• Collaboration across IT, OT, Compliance, Operations, Asset Management, Operations, and external partners.
• Participate in on-call rotation and planned after-hours maintenance windows.
• Deploy and maintain monitoring/observability across servers, network devices, applications, and site communications.
• Implement configuration management, baseline verification, and change management processes that adhere to NERC CIP (including approvals, testing, back-out plans, and evidence).
• Lead/participate in incident response, cyber event triage, and post-incident reviews; maintain playbooks and test recovery procedures.
• Provide support for OT network/server issues, perform root cause analysis, and drive corrective actions.
• Design and implement secure, resilient network and server architectures for T-ROC and support field sites (wind, solar, battery storage).
• Maintain accurate OT inventories (hardware, software, firmware), network diagrams, data flow maps, and access lists; ensure audit-ready documentation.
• Schedule and execute maintenance windows, firmware/patch cycles, and lifecycle refresh plans.
• Evaluate and introduce new technologies (hardware, software, cloud, security) that improve reliability, scalability, and compliance; create solution designs, reference architectures, and implementation plans.

Requirements

• Bachelor’s degree in Computer Science, Electrical/Computer Engineering, Information Systems, or related field; or equivalent practical experience.
• Monitoring/Control: SNMP/Syslog/NetFlow, Windows Eventing, OT telemetry integrations, SCADA/EMS monitoring.
• Ability to travel to remote generation sites (wind/solar/storage), substations as needed (~10%).
• Experience with direct responsibility for control center infrastructure.
• Familiarity with NERC CIP concepts for Low Impact assets and Medium Impact control centers, plus OT fundamentals.
• Ability to set standards, mentor engineers, and drive large-scale changes across diverse sites.
• Proven track record implementing defense-in-depth and segmentation for OT networks, vendor remote access, and interconnection security (e.g., ICCP/TASE.2).
• Experience with SOAR, configuration drift detection, and compliance evidence automation.
• Strong knowledge of routing/switching, VLANs, ACLs, VPNs, NAT, QoS, BGP/OSPF, and secure remote access.
• Automation: PowerShell, Python, Ansible (optional), Git., Bash, Batch
• Exposure to Zero Trust, micro-segmentation, and Privileged Access Management in industrial or utility OT environments.
• Proficiency with scripting/automation (PowerShell, Bash, Python) for configuration, monitoring, and evidence collection.
• Working knowledge of AWS and Azure networking and security.
• Experience implementing security monitoring, patch management, and backup/restore for servers and NAS.
• Demonstrated leadership in architecture, program design, audit readiness, and cross-functional stakeholder management.
• 5+ years managing enterprise networks and servers (Windows/Linux), including virtualization (VMware/Hyper-V), storage/NAS (Synology or similar), and core Microsoft services (AD, DNS, DHCP, GPO, PKI).
• Hands-on experience with server platforms (deployment, firmware/low level management such as ILO, performance tuning).
• 10+ years experience spanning IT/OT environments.
• Own technical evidence for network/server controls (configs, logs, diagrams, test records) and support internal and external audits as SME.
• Ability to lift and install 50+lbs
• Background in battery storage communications and site control systems; knowledge of inverter/plant controller vendor ecosystems.
• Strong communication skills—able to translate technical requirements for operations, compliance, and executive stakeholders.

Benefits

Training + Development

Interview process

Visa Sponsorship

Security clearance