Industrial Cybersecurity Engineer

Description

• Plan, manage, and execute Proof of Concepts (PoCs) and technical evaluations
• Design and implement robust cybersecurity strategies, policies, and procedures tailored to the client's OT environment
• Deliver ongoing operational support and technical guidance to ensure sustained security program effectiveness
• Assist in OT remediation and mitigation efforts for identified security gaps
• Drive and support exposure and vulnerability management across OT assets, including identification, risk prioritization, mitigation, and remediation tracking
• Conduct risk assessments and develop risk mitigation strategies for OT systems
• Provide training and knowledge transfer to client and internal personnel on OT cybersecurity best practices, tools, and techniques
• Manage project timelines, deliverables, and ensure successful implementation of cybersecurity solutions
• Identify configurations to harden OT devices, controllers, and other components according to industry best practices and standards
• Coordinate and collaborate with 3rd party application and equipment OEM vendors to integrate security solutions and resolve technical issues
• Monitor platform performance and usage metrics to optimize security operations
• Design security solutions with existing networks and security infrastructure
• Align compliance with relevant industry regulations, standards, and guidelines (e.g., NERC CIP, ISA/IEC 62443, NIST SP 800-82)
• Investigate security alerts, anomalies, and potential threats across OT systems and networks
• Identify potential vulnerabilities, risks, and security gaps within the OT environment
• Identify and prioritize operational security issues and incidents within client OT environments
• Manage security tickets and incident response workflows, ensuring timely resolution and proper escalation procedures
• Collaborate with clients to define, prioritize, and execute OT Security Program initiatives tailored to their specific operational environment and business requirements
• Effectively communicate technical information to both technical and non-technical stakeholders
• Provide ongoing platform usage guidance and best practices to maximize security effectiveness
• Think critically, spanning the sales process through client support, troubleshooting, and developing new use cases for internal and external utilization
• Design, develop, and deploy secure architectures, network segmentation, and access control mechanisms for OT systems
• Integrate security solutions, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) systems, into the OT environment
• Develop and implement security incident response plans and procedures for OT environments
• Develop and deliver best practices, training materials, documentation, and workshops tailored to the client's specific needs
• Support day-to-day security operations and serve as technical escalation point for complex issues
• Identify, assess, and mitigate cyber risks across OT systems, and networks
• Collaborate closely with client teams, including IT, OT personnel, and management, to understand their unique requirements and align cybersecurity strategies with business objectives
• Develop and present mitigation options and remediation strategies for identified security risks
• Configure and optimize platform settings, rules, and policies to meet client-specific operational requirements
• Gather client requirements, design architecture, and present solutions for project quotes and implementation
• Document and present PoC results, demonstrating the value and ROI of the solution
• Conduct comprehensive assessments of clients' OT systems, including ICS, SCADA systems, distributed control systems (DCS), and other industrial automation equipment
• Analyze and evaluate the effectiveness of existing security controls and configurations

Requirements

• Experience in cybersecurity, with a strong focus on industrial control systems (ICS) and operational technology (OT) environments
• Familiarity with industry standards and regulations, such as NERC CIP, ISA/IEC 62443, SANS Critical Controls, and NIST SP 800-82
• Understand client challenges and pain points related to OT/ICS cybersecurity
• Willingness to travel to client sites
• Understanding of OT protocols (e.g., Modbus, DNP3, IEC 61850), systems, devices, and architectures
• Experience with OT Passive Monitoring and Preventative solutions
• Experience with Linux Operating Systems, Windows Operating Systems, and virtualized environments
• Relevant industry certifications (e.g., CISSP, GICSP, CCNA, GRID, GPEN)
• Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or a related field
• Excellent problem-solving, analytical, and critical thinking skills
• Familiarity with various industrial devices and controls systems (DCS, PLC, SCADA) and vendors (e.g., Siemens, Rockwell, etc.)
• Experience with virtualization platforms (VMware, Hyper-V) and cloud environments (AWS, Azure)
• Experience in Industrial Control Systems (ICS) and system integration, with a focus on ICS and SCADA systems
• Experience and ability to walk facility floor safely, with proper PPE, to conduct inspections and deployments
• Strong communication and interpersonal skills, with the ability to effectively present technical information to diverse audiences
• Solid understanding of networking concepts and technologies

Benefits

Training + Development

Interview process

Visa Sponsorship

Security clearance