IT Cybersecurity Analyst - Cloud Security Engineer
WEC Energy Group
CloudCyber SecurityFirewalls
Senior Security Engineer - Operational Technology
Grainger
full-time
Posted on:
Origin: • 🇺🇸 United States • Illinois
Visit company websiteSalary
💰 $110,500 - $184,100 per year
Job Level
Senior
Tech Stack
CloudCyber SecurityFirewalls
About the role
- The OT Security Engineer focuses on the hands-on deployment, management, and continuous improvement of new systems and the OT security stack.
- This role secures Grainger’s OT systems by ensuring the proper deployment and function of security technologies, which may include firewalls, IDS, EDR, and vulnerability management.
- Deploy & Configure Security Tools: Deploy, configure, and optimize security technologies across all existing and new facilities.
- Tailor Security Configurations: Adapt security settings to meet the unique operational needs of Grainger’s OT systems while achieving defined security outcomes.
- Automation & Integration Runbooks: Develop automation scripts and author integration runbooks to ensure seamless and repeatable security tool implementations.
- System Troubleshooting: Quickly diagnose and resolve configuration or performance issues while ensuring minimal disruption to operations.
- Collaboration with Architecture: Translate strategic security designs into practical, secure implementations across the operational environment.
Requirements
- Bachelor's/Master's Degree in a relevant field (e.g., Cybersecurity, Electrical Engineering, Computer Science, etc.); or an equivalent level of knowledge gained through on-the-job experience.
- Relevant industry certifications such as CISSP, GICSP, or ISA/IEC 62443 Cybersecurity Expert
- 5+ years of direct experience in the cybersecurity field with a minimum of 2 years in OT Security
- Strong technical understanding of the following: Secure Remote Access methods specific to the OT domain (e.g., Zscaler, Beyond Trust, CyberArk, Xage, etc.)
- Network segmentation and the supporting engineering models
- Endpoint Detection and Response tooling, such as SentinelOne or Crowdstrike
- Vulnerability Management as it pertains to the OT domain
- OT network monitoring and intrusion detection systems (Dragos, Nozomi, Claroty)
- Modern-day network designs which account for the hybrid and connected nature of many new & emerging technologies (Industry 4.0, edge compute, and CPwE Cloud Connectivity)
- A working understanding of major Cloud Service Providers
- A working understanding of OT Incident Response procedures
- Experience following OT security policies, standards, and baselines
- Experience following vendor best practices to ensure a secure and resilient system
- Experience translating the outcomes of threat modeling exercises into actionable remediation plans
- Working understanding of the IEC/ISA 62443 framework
