Cyber Security Architect - Hybrid

OT/ICS Cybersecurity Architect - Hybrid

As an OT/ICS Cybersecurity Architect, the candidate will play a pivotal role in designing, implementing, and optimizing cybersecurity solutions for industrial environments. They will work with clients in energy, manufacturing, utilities, and other critical infrastructure sectors to secure operational technology (OT) and industrial control systems (ICS), ensuring the safety, reliability, and resilience of their operations. They will leverage their deep technical expertise, industry knowledge, and hands-on experience with leading OT/ICS security tools to deliver innovative solutions, lead project teams, and provide strategic guidance to clients.

Key Responsibilities

OT/ICS Security Architecture & Design

• Lead the design and implementation of OT/ICS cybersecurity architectures, including network segmentation, secure remote access, and integration with IT security controls.

• Develop and document security reference architectures, blueprints, and roadmaps tailored to client environments and industry standards (e.g., NIST 800-82, IEC 62443).

• Evaluate, select, and deploy OT/ICS cybersecurity technologies, with hands-on experience in:

                o Claroty for OT asset discovery and vulnerability management

                o Palo Alto and Cradlepoint for firewall configuration, segmentation, and secure connectivity

                o CrowdStrike for OT monitoring and threat detection

                o BeyondTrust for privileged secure remote access management

                o Familiarity with other vendor tools such as Cisco (network security), ServiceNow (ticketing and workflow integration), Splunk (SIEM/log analytics),

Crowdstrike (Falcon Discover for IoT) and TxOne (OT endpoint protection)

• Conduct security acceptance testing and validation of new or updated OT systems to ensure compliance with security requirements and industry best practices.

Risk Assessment & Vulnerability Management

• Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify, analyze, and prioritize cyber risks.

• Lead vulnerability management efforts for OT/ICS assets, including the use of Claroty for vulnerability identification, risk scoring, and remediation planning.

• Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS cybersecurity.

Incident Response & Monitoring

• Design and implement OT/ICS security monitoring solutions, leveraging tools such as CrowdStrike for endpoint and network monitoring, and Splunk for log aggregation and analytics.

• Collaborate with IT and OT teams to develop and test incident response plans specific to industrial environments.

• Integrate monitoring and alerting workflows with ServiceNow for streamlined incident management.

Governance, Policy, and Training

• Develop and update OT/ICS cybersecurity policies, standards, procedures, and job aids.

• Deliver training and awareness programs for client personnel, including plant operators, engineers, and third-party vendors.

• Advise clients on governance frameworks and best practices for OT/ICS cybersecurity program development and maturity assessments.

Client Engagement & Leadership

• Serve as a subject matter expert in client meetings, workshops, and presentations, especially regarding the deployment, integration, and optimization of OT/ICS security tools.

• Lead project teams, mentor junior staff, and contribute to business development activities such as proposal writing and solution development.

• Stay current on emerging OT/ICS threats, vulnerabilities, and technologies, and share insights with clients and internal teams.