Serve as the Operational Technology (OT)/Industrial Control Systems (ICS) security analyst to design secure system architectures for critical infrastructure
Implement network segmentation, access controls, and intrusion detection systems
Define, develop, integrate, design and maintain security technical controls in a variety of IT/OT environments and systems
Define security product specifications, tools and techniques for intrusion detection, intrusion prevention, configuration hardening, and access methods
Review design data elements (threat models, data flow diagrams, requirements, etc.) along with known vulnerabilities associated with OT systems and create designs and recommendations that lower or eliminate security risk
Engage in root cause analysis for incidents, identifying and implementing corrective actions to prevent future occurrences
Design and review network architectures for OT environments, including routing protocols, VLANs, and subnetting
Implement cybersecurity measures to protect OT networks from internal and external threats
Monitor network traffic for anomalies and respond to security incidents
Develop and enforce security policies and procedures in line with industry standards
Conduct/participate regular network assessments and audits to identify vulnerabilities and areas for improvement
Collaborate with teams to integrate OT and IT networks where applicable
Maintain detailed documentation of network configurations, processes, and security protocols
Work closely with cross-functional teams, including operations, engineering, and IT, to support network requirements
Provide training and support to personnel on network best practices and cybersecurity awareness
Requirements
3+ years of experience with Operational Technology
3+ years of experience with an Information Security domain
3+ years of experience with delivering architecture & design solutions supporting data security
1+ years of experience performing network security implementations or assessments
Ability to travel both domestically and internationally
1+ years of experience with industry standard routing principles (RIP, OSPF, VPN, IPSEC, Static Routing, etc.)
Experience with industrial networking standards (e.g., Ethernet/IP, Modbus)
Experience with cybersecurity frameworks (e.g., NIST, IEC 62443)
Experience with IT and cybersecurity risk fundamentals
Currently hold or have held an active U.S. Security Clearance in the past 24 months?
1+ years of experience with the DevSecOps lifecycle
Experience working on an Agile team using Agile methodologies
Comfortability leveraging AI/LLMs to improve work quality and efficiency
Experience using scripting languages: Make, Perl, Python, shell scripts, etc.