OT Security Engineer

As an OT Security Engineer, you will play a critical role in safeguarding the operational technology infrastructure that drives our business operations. You will work closely with cross-functional teams to assess, design, implement, and monitor security strategies for OT networks, systems, and devices. Your expertise will help protect critical assets from cybersecurity threats, ensuring the continued reliability and safety of our operations.

Key Responsibilities:

• OT Security Management: Implement and maintain security controls and policies for OT networks, SCADA systems, industrial control systems (ICS), and other critical infrastructure.
• Risk Assessment: Conduct regular risk assessments and vulnerability assessments of OT systems, identifying potential threats and implementing mitigation strategies.
• Incident Response: Participate in incident detection, response, and recovery processes, investigating OT-related security incidents and working to resolve them effectively.
• Collaboration: Collaborate with IT and security teams to align OT security with overall cybersecurity initiatives. Provide recommendations for improving security posture.
• Security Monitoring: Monitor OT network traffic and systems for unusual activity, ensuring continuous compliance with security standards.
• Patch Management: Manage and apply necessary patches and updates to OT systems and devices to maintain security integrity.
• Documentation & Reporting: Maintain comprehensive documentation of security processes, incidents, and recommendations. Regularly report on the status of OT security efforts.
• Compliance: Ensure OT security practices align with industry standards and regulatory requirements (e.g., NIST, IEC 62443, NERC CIP).
  
  
  

Qualifications:

• Minimum of 3 years of experience working in OT security, industrial cybersecurity, or a related field.
• Strong understanding of industrial control systems (ICS), SCADA systems, and OT network architectures.
• Experience with OT security tools such as firewalls, IDS/IPS, endpoint protection, and vulnerability scanning tools.
• Familiarity with network segmentation and securing OT/IT convergence.
• Knowledge of security protocols, encryption, and threat intelligence for OT environments.
• Hands-on experience with incident response and forensic tools.
• Certified Information Systems Security Professional (CISSP), Certified SCADA Security Architect (CSSA), or other relevant certifications.
• Willingness to pursue additional certifications as needed.
• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field, or equivalent work experience.
• Strong analytical skills with a proven ability to troubleshoot and resolve complex security issues.
• Excellent verbal and written communication skills, with the ability to interact effectively with technical and non-technical stakeholders.
  
  
  

Preferred Qualifications:

• Experience with industry-specific standards such as NERC CIP, IEC 62443, and ISO 27001.
• Knowledge of OT-specific attack vectors and threat landscapes.
• Familiarity with cloud-based OT security solutions and emerging technologies.
  
  
  

#SONITECH

#SONITECH1