OT/ICS Security Lead

Role: OT/ICS Security Lead

Location: Boston, MA (Hybrid)

Rate: $70/hr

Job Summary

We are seeking an experienced OT/ICS Security Lead to drive cybersecurity initiatives across multiple industrial and operational sites. This role will focus on assessing, securing, and improving Operational Technology (OT) and Industrial Control System (ICS) environments while ensuring operational continuity and safety.

The ideal candidate will possess deep expertise in OT security assessments, industrial network segmentation, Purdue Model architecture, IEC 62443, NIST SP 800-82, and OT monitoring technologies such as Claroty, Nozomi, Dragos, or Armis.

Key Responsibilities

OT/ICS Security Assessments
Conduct OT security assessments across manufacturing, healthcare, pharmaceutical, or industrial facilities.
Perform asset discovery for PLCs, SCADA, HMI, DCS, and industrial network devices.
Review OT network architectures and identify vulnerabilities, attack surfaces, and legacy system risks.
Perform gap assessments against IEC 62443 and NIST SP 800-82.
Deliver OT baseline assessments, findings reports, and remediation recommendations.

OT Network Architecture & Segmentation
Design Purdue Model-based OT architectures utilizing zones and conduits.
Define IT/OT DMZ architectures and secure communication pathways.
Recommend firewall placement, segmentation strategies, and network isolation controls.
Ensure security improvements do not impact production, uptime, or safety.

Industrial Cyber Risk Management
Assess cyber risks impacting PLCs, SCADA systems, DCS environments, industrial protocols, and remote vendor access.
Maintain OT risk registers and remediation tracking.
Develop risk prioritization matrices and mitigation strategies.

Security Controls & Hardening
Recommend OT-specific security controls including:

• Network segmentation

• Access controls and RBAC

• Vendor access management

• Monitoring and logging
  Develop compensating controls for legacy OT systems that cannot support endpoint security solutions.

OT Monitoring & Threat Detection
Deploy, configure, and tune OT security monitoring platforms such as Claroty, Nozomi, Dragos, or Armis.
Perform protocol-level inspection and industrial network traffic analysis.
Detect unauthorized access, lateral movement, and anomalous activity.
Integrate OT visibility platforms with enterprise security monitoring solutions.

Remediation & Technical Debt Reduction
Develop remediation roadmaps and track mitigation activities.
Support modernization initiatives and migration toward secure OT architectures.
Reduce cybersecurity technical debt across industrial environments.

Site Engagement & Stakeholder Coordination
Partner with plant managers, OT engineers, automation teams, maintenance teams, and IT security organizations.
Conduct workshops, site walkthroughs, and stakeholder meetings.
Align security controls with operational requirements and maintenance schedules.

Compliance & Standards
Ensure alignment with:

• IEC 62443

• NIST SP 800-82

• NIST Cybersecurity Framework (CSF)
  Support audit readiness and compliance assessments.

Required Skills

7+ years of OT/ICS cybersecurity experience
Strong experience with PLC, SCADA, DCS, HMI, and industrial control environments
Expertise in Purdue Model architecture and zone-conduit segmentation
Experience with OT security tools such as Claroty, Nozomi, Dragos, or Armis
Knowledge of industrial protocols and OT attack vectors
Hands-on OT risk assessment and remediation experience
Strong understanding of IEC 62443 and NIST SP 800-82
Experience working in manufacturing, pharmaceutical, healthcare, utilities, or industrial environments

Preferred Certifications

GICSP
ISA/IEC 62443 Certification
CISSP
CISM
GIAC Certifications