Dragonfli Group

Senior OT/ICS Cybersecurity Architect

Dragonfli Group

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Job Level

Senior

Tech Stack

CloudCyber SecurityIoTServiceNowSplunk

About the role

  • Serve as the trusted security architect guiding industrial organizations through OT/ICS cybersecurity.
  • Lead design and implementation of secure architectures for SCADA, DCS, and PLC-based environments, including network segmentation and secure remote access.
  • Develop and document security reference architectures, blueprints, and roadmaps aligned with NIST 800-82 and IEC 62443.
  • Evaluate, select, deploy, and optimize OT/ICS cybersecurity technologies (Claroty, Palo Alto, Cradlepoint, CrowdStrike, BeyondTrust, Splunk, ServiceNow).
  • Conduct security acceptance testing and validation of OT systems to ensure compliance with security requirements and best practices.
  • Perform consequence-based risk assessments (e.g., Cyber PHA) and lead vulnerability management and remediation programs.
  • Design and implement OT/ICS security monitoring and integrate alerting with ServiceNow for incident management.
  • Create OT-specific incident response playbooks and coordinate joint exercises across IT and OT teams.
  • Deliver policies, training, and workshops for plant operators, engineers, and third-party vendors.
  • Lead project teams, mentor junior staff, contribute to proposals and business development, and stay current on emerging OT/ICS threats.

Requirements

  • Bachelor’s degree in Engineering, Computer Science, Information Security, or related field.
  • 7+ years of experience in OT/ICS cybersecurity, including hands-on experience with industrial control systems (e.g., SCADA, DCS, PLCs) in sectors such as oil & gas, energy, utilities, or manufacturing.
  • 4+ years of demonstrated experience designing and implementing OT/ICS security architectures and controls using tools such as Claroty, Palo Alto, Cradlepoint, CrowdStrike, BeyondTrust PRA.
  • Hands-on experience with Claroty for asset discovery and vulnerability management, Palo Alto and Cradlepoint for networking, CrowdStrike for monitoring, BeyondTrust for privileged access, and familiarity with Cisco, ServiceNow, Splunk, and TxOne.
  • Ability to travel up to 50%, primarily within the Houston region.
  • Strong knowledge of OT/ICS protocols (e.g., Modbus, DNP3, OPC, Profibus), network architectures, and common vulnerabilities.
  • Experience conducting consequence-based risk assessments (e.g., Cyber PHA), vulnerability management, and incident response in OT environments.
  • Experience with cloud-based OT/ICS security solutions and IT/OT convergence initiatives.
  • Familiarity with industry standards and frameworks (e.g., NIST 800-82, IEC 62443, NERC CIP).
  • Strong communication skills and ability to present technical concepts to technical and non-technical audiences.
  • Demonstrated leadership in project delivery, client engagement, and mentoring junior staff.
  • Prior consulting experience with critical infrastructure or industrial sectors.
  • Experience developing and delivering OT/ICS cybersecurity training programs.
  • Preferred: Advanced degree and professional certifications such as GICSP, CISSP, CISM, ISA/IEC 62443.