Acuity

OT Security Engineer

Acuity

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

Cyber SecurityFirewalls

About the role

  • Assist with ICS policy review and creation when needed
  • Develop, improve, and maintain detailed processes and procedures for security activities
  • Work with engineering and site operations teams to include security in capital projects and daily activities
  • Oversee various related projects that may include numerous diverse stakeholders
  • Conduct comprehensive security risk assessments of ICS environments, including vulnerability assessments, testing, and risk analysis
  • Identify vulnerabilities and potential threats to ICS networks and systems
  • Develop and implement risk mitigation strategies to address identified risks
  • Work with gap owners to remediate identified gaps and risks
  • Ensure compliance with industry standards and regulations (e.g., ISA/IEC 62443, NIST)
  • Conduct regular audits and assessments to ensure ongoing compliance
  • Design, implement, and maintain security architectures for manufacturing and distribution center systems and environments
  • Design and implement cybersecurity countermeasures and security platforms
  • Implement robust network segmentation between IT and ICS networks
  • Perform detailed analysis of new hardware and software to identify hardening opportunities
  • Assist in vulnerability identification, triage, and mitigation
  • Monitor ICS networks for security incidents, analyze threats, and respond to incidents to minimize impact and prevent recurrence
  • Develop and execute incident response plans and playbooks, and provide appropriate support in Incident Response (IR) activities
  • Investigate security incidents and perform forensic analysis
  • Work closely with IT, operations, and engineering teams to integrate security best practices into ICS design and operations
  • Provide training and awareness programs for staff on ICS security best practices
  • Collaborate with external stakeholders, including vendors and regulatory bodies.

Requirements

  • Proven experience protecting industrial control systems (ICS) in critical manufacturing infrastructure
  • Bilingual and a completed degree is required
  • A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.)
  • Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, etc.)
  • Knowledge of IT and OT security best practices; a practical understanding of the differences
  • Understanding protocols common in ICS environments (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.)
  • Familiar with security technologies within the ICS environment such as firewalls, IDS, endpoint security solutions, access control systems, and other related security technologies
  • Strong understanding of network architecture and cybersecurity principles
  • Excellent analytical, problem-solving, and communication skills
  • Ability to work independently and as part of a multidisciplinary team.
Benefits
  • Flexible work arrangements

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
ICS policy reviewsecurity risk assessmentsvulnerability assessmentsrisk analysisrisk mitigation strategiessecurity architecturescybersecurity countermeasuresnetwork segmentationincident response plansforensic analysis
Soft skills
analytical skillsproblem-solving skillscommunication skillsability to work independentlyteam collaboration
Certifications
ISA/IEC 62443NIST SP 800-82CIS