Key skills
OT securityIoT securityTCP/IP NetworkingNIST standardsCybersecurity certificationSCADA systemsPLC systemsNetwork securityCommunication protocolsProblem solvingCommunication skillsCommunicationNetwork Security
About this role
Crane Company is seeking an OT Security Engineer to oversee Operational Technology security solutions for their manufacturing environments. The role involves implementing security standards, identifying threats, and ensuring secure deployments across various business units and manufacturing sites.
Responsibilities:
- Support and maintain OT/IoT security tool set and associated integrations with other systems
- Collaborate with the manufacturing function across lines of business to develop and define security requirements
- Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective
- Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access
- Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented
- Develop and implement standard work supporting the Global OT security function and supporting solutions
- Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations
- Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed
- Ensure security best practices are identified and integrated into all approaches and methodologies
- Define requirements and design standards to protect Crane’s OT solutions from security threats and for mitigating the impacts of these threats
- Define reference network architectures based on industry best practices and work with business units to implement for OT solutions
- Consult on business unit OT projects and provide cybersecurity expertise
Requirements:
- 2yrs experience with securing Operational Technology and related systems environments
- Strong understanding and prior experience with the application of securing OT and related systems
- Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC
- Deep technical understanding of TCP/IP Networking and Firewalls
- Deep technical understanding of system integration methods including API's and authentication methods
- Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards
- Solid foundation cybersecurity domains such as network security, EDR, anomaly detection
- Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code
- Comfortable with designing and overseeing the implementation of secure OT architectures
- Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments
- Commitment to security training and earning corresponding certifications
- Highly motivated with passion for solving complex problems
- Excellent verbal and written communication skills, comfortable with presenting to Operational Teams
- Flexibility to work outside regularly scheduled/normal business hours as required
- Ability and desire to travel both domestically and internationally
- Required: Degree in a related field or at least 4 years relevant professional experience
- Required: Mobility and ability to be on your feet for long periods in a manufacturing setting
- Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar
- US Person as defined under EAR PART 772 AND ITAR 120.15