Key Responsibilities
OT/ICS Security Architecture & Design
• Lead the design and implementation of OT/ICS cybersecurity architectures, including network segmentation, secure remote access, and integration with IT security controls.
• Develop and document security reference architectures, blueprints, and roadmaps tailored to client environments and industry standards (e.g., NIST 800-82, IEC 62443).
• Evaluate, select, and deploy OT/ICS cybersecurity technologies, with hands-on experience in:
o Claroty for OT asset discovery and vulnerability management
o Palo Alto and Cradlepoint for firewall configuration, segmentation, and secure connectivity
o CrowdStrike for OT monitoring and threat detection
o BeyondTrust for privileged secure remote access management
o Familiarity with other vendor tools such as Cisco (network security), ServiceNow (ticketing and workflow integration), Splunk (SIEM/log analytics),
Crowdstrike (Falcon Discover for IoT) and TxOne (OT endpoint protection)
• Conduct security acceptance testing and validation of new or updated OT systems to ensure compliance with security requirements and industry best practices.
Risk Assessment & Vulnerability Management
• Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify, analyze, and prioritize cyber risks.
• Lead vulnerability management efforts for OT/ICS assets, including the use of Claroty for vulnerability identification, risk scoring, and remediation planning.
• Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS cybersecurity.
Incident Response & Monitoring
• Design and implement OT/ICS security monitoring solutions, leveraging tools such as CrowdStrike for endpoint and network monitoring, and Splunk for log aggregation and analytics.
• Collaborate with IT and OT teams to develop and test incident response plans specific to industrial environments.
• Integrate monitoring and alerting workflows with ServiceNow for streamlined incident management.
Governance, Policy, and Training
• Develop and update OT/ICS cybersecurity policies, standards, procedures, and job aids.
• Deliver training and awareness programs for client personnel, including plant operators, engineers, and third-party vendors.
• Advise clients on governance frameworks and best practices for OT/ICS cybersecurity program development and maturity assessments.
Client Engagement & Leadership
• Serve as a subject matter expert in client meetings, workshops, and presentations, especially regarding the deployment, integration, and optimization of OT/ICS security tools.
• Lead project teams, mentor junior staff, and contribute to business development activities such as proposal writing and solution development.
• Stay current on emerging OT/ICS threats, vulnerabilities, and technologies, and share insights with clients and internal teams.
Never miss an opportunity! Create an alert based on the job you applied for.
