Security Engineer | Operational Tech/Infrastructure Security (Houston, TX)

Houston, TX

Trace3

Trace3 is an elite technology consultancy that provides IT strategy, solutions, and services to the world’s most admired companies.

View all jobs at Trace3

Apply now Apply later

Who is Trace3?

Trace3 is a leading Transformative IT Authority, providing unique technology solutions and consulting services to our clients. Equipped with elite engineering and dynamic innovation, we empower IT executives and their organizations to achieve competitive advantage through a process of Integrate, Automate, Innovate.

Our culture at Trace3 embodies the spirit of a startup with the advantage of a scalable business. Employees can grow their career and have fun while doing it!

Trace3 is headquartered in Irvine, California. We employ more than 1,200 people all over the United States. Our major field office locations include Denver, Indianapolis, Grand Rapids, Lexington, Los Angeles, Louisville, Texas, San Francisco.  

Ready to discover the possibilities that live in technology?

 

Come Join Us!

Street-Smart Thriving in Dynamic Times

We are flexible and resilient in a fast-changing environment. We continuously innovate and drive constructive change while keeping a focus on the “big picture.” We exercise sound business judgment in making high-quality decisions in a timely and cost-effective manner. We are highly creative and can dig deep within ourselves to find positive solutions to different problems.

Juice - The “Stuff” it takes to be a Needle Mover

We get things done and drive results. We lead without a title, empowering others through a can-do attitude. We look forward to the goal, mentally mapping out every checkpoint on the pathway to success, and visualizing what the final destination looks and feels like.

Teamwork - Humble, Hungry and Smart

We are humble individuals who understand how our job impacts the company's mission. We treat others with respect, admit mistakes, give credit where it’s due and demonstrate transparency. We “bring the weather” by exhibiting positive leadership and solution-focused thinking. We hug people in their trials, struggles, and failures – not just their success. We appreciate the individuality of the people around us.

 

The OT Cyber R&D Engineer is responsible for researching and developing secure design of OT security solutions, for the Cyberwise program initiative at multiple business units across the company. Technologies that may be included within the CyberWise initiative include : Network segmentation, Secure Remote Access and MultiFactor Authentication, Identity and access management, End Point Protection.

Work Allocation Responsibilities:

  • Develop OT security research project proposals for consideration by internal research portfolios.
  • Research, test, and/or lead proof-of-concepts for new and emerging OT technologies.
  • Lead cybersecurity risk assessments for designs/installations and/or emerging technology OT solutions to determine criticality rankings and risk gaps.
  • Utilize industry standards and frameworks (e.g., NIST-800-53/82, IEC-62443, MITRE ATT&CK / D3FEND), to identify capabilities and technologies to provide enhanced cyber defenses in diverse scenarios.
  • Develop cybersecurity guardrails and reference architectures to enable CyberWise Program emerging technologies, such as Identify and Access Management, EndPoint Protection, Network Segmentation, Asset Inventory Mgmt, and Immutable backup capabilities for OT.
  • Provide recommendations and plans to mitigate identified issues from OT cybersecurity risk assessments, ICS Vulnerability assessments, and OT Pen tests .

 

Required Technical Skills:

  • Experience in utilizing frameworks and standards such as NIST-800-53/82 and IEC-62443 in an ICS environment.
  • Demonstrated OT Cybersecurity project experience including leading the development of security architectures (programs) and secure network architectures (systems).
  • Experience in performing OT/ICS vulnerability scans, passively and actively with technologies such as Tenable Nessus or NMAP scanning tools.
  • Understanding of threats, vulnerabilities, attack paths and exploits in an OT/ICS environment.
  • Experience with selecting, designing, architecting, and deploying security technologies to an OT/ICS environment.
    • Experience and deep Understanding of key technologies such as : End Point Protection, Identity and Access management, Network segmentation, Backups.
  • Demonstrated ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc.
  • Knowledge of techniques and tools that promote effective analysis and the ability to determine root cause and resolution of problems.

Required Functional/Domain knowledge:

  • Minimum 10 years related work experience in Operational Technology/Industrial Controls Systems Cybersecurity field with increasing levels of responsibility.
  • “Hands-On” experience with OT/ICS critical infrastructure in energy or similar industries preferred.

 

Other preferred skills/competencies:

  • Experience with OT, ICS, PCN systems, including PCN infrastructure, network and network security, applications, and databases. Functional knowledge in systems architecture for both IT and OT systems.
  • Vendor-specific training on Operational Technology, ICS equipment manufacturers and internal network systems are highly preferred.
  • Strong knowledge of IAM concepts, standards, and protocols, such as OAuth, OpenID Connect, SAML, SCIM, and FIDO.
  • Experience with IAM tools and platforms
  • Experience in working with EDR platforms such as Microsoft Defender, Symantec, McAfee, or Carbon Black.
  • Experience working with end point protection tools and frameworks, such as antivirus, firewall, EDR, and DLP.
  • Experience in working with Windows, Linux, and Mac operating systems and platforms.
  • Excellent problem-solving, debugging, and communication skills.
  • Communicates in a clear, concise, understandable manner both orally and in writing.
  • Associate or Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a similar technical degree. Relevant experience will be considered.
Actual salary will be based on a variety of factors, including location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base salary.Estimated Pay Range$75—$85 USD

The Perks:

  • Comprehensive medical, dental and vision plans for you and your dependents
  • 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
  • Competitive Compensation
  • Training and development programs
  • Stocked kitchen with snacks and beverages
  • Collaborative and cool culture
  • Work-life balance and generous paid time off

 

***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: Antivirus Carbon Black Computer Science EDR Exploits Firewalls IAM ICS Industrial Linux MITRE ATT&CK Nessus Network security NIST NIST 800-53 Nmap OpenID R&D Risk assessment SAML Vulnerabilities Vulnerability scans Windows

Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Health care Insurance Salary bonus Snacks / Drinks Startup environment Transparency

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.