Security Engineer | Operational Tech/Infrastructure Security (Houston, TX)
Houston, TX
Trace3
Trace3 is an elite technology consultancy that provides IT strategy, solutions, and services to the world’s most admired companies.Who is Trace3?
Trace3 is a leading Transformative IT Authority, providing unique technology solutions and consulting services to our clients. Equipped with elite engineering and dynamic innovation, we empower IT executives and their organizations to achieve competitive advantage through a process of Integrate, Automate, Innovate.
Our culture at Trace3 embodies the spirit of a startup with the advantage of a scalable business. Employees can grow their career and have fun while doing it!
Trace3 is headquartered in Irvine, California. We employ more than 1,200 people all over the United States. Our major field office locations include Denver, Indianapolis, Grand Rapids, Lexington, Los Angeles, Louisville, Texas, San Francisco.
Ready to discover the possibilities that live in technology?
Come Join Us!
Street-Smart - Thriving in Dynamic Times
We are flexible and resilient in a fast-changing environment. We continuously innovate and drive constructive change while keeping a focus on the “big picture.” We exercise sound business judgment in making high-quality decisions in a timely and cost-effective manner. We are highly creative and can dig deep within ourselves to find positive solutions to different problems.
Juice - The “Stuff” it takes to be a Needle Mover
We get things done and drive results. We lead without a title, empowering others through a can-do attitude. We look forward to the goal, mentally mapping out every checkpoint on the pathway to success, and visualizing what the final destination looks and feels like.
Teamwork - Humble, Hungry and Smart
We are humble individuals who understand how our job impacts the company's mission. We treat others with respect, admit mistakes, give credit where it’s due and demonstrate transparency. We “bring the weather” by exhibiting positive leadership and solution-focused thinking. We hug people in their trials, struggles, and failures – not just their success. We appreciate the individuality of the people around us.
The OT Cyber R&D Engineer is responsible for researching and developing secure design of OT security solutions, for the Cyberwise program initiative at multiple business units across the company. Technologies that may be included within the CyberWise initiative include : Network segmentation, Secure Remote Access and MultiFactor Authentication, Identity and access management, End Point Protection.
Work Allocation Responsibilities:
- Develop OT security research project proposals for consideration by internal research portfolios.
- Research, test, and/or lead proof-of-concepts for new and emerging OT technologies.
- Lead cybersecurity risk assessments for designs/installations and/or emerging technology OT solutions to determine criticality rankings and risk gaps.
- Utilize industry standards and frameworks (e.g., NIST-800-53/82, IEC-62443, MITRE ATT&CK / D3FEND), to identify capabilities and technologies to provide enhanced cyber defenses in diverse scenarios.
- Develop cybersecurity guardrails and reference architectures to enable CyberWise Program emerging technologies, such as Identify and Access Management, EndPoint Protection, Network Segmentation, Asset Inventory Mgmt, and Immutable backup capabilities for OT.
- Provide recommendations and plans to mitigate identified issues from OT cybersecurity risk assessments, ICS Vulnerability assessments, and OT Pen tests .
Required Technical Skills:
- Experience in utilizing frameworks and standards such as NIST-800-53/82 and IEC-62443 in an ICS environment.
- Demonstrated OT Cybersecurity project experience including leading the development of security architectures (programs) and secure network architectures (systems).
- Experience in performing OT/ICS vulnerability scans, passively and actively with technologies such as Tenable Nessus or NMAP scanning tools.
- Understanding of threats, vulnerabilities, attack paths and exploits in an OT/ICS environment.
- Experience with selecting, designing, architecting, and deploying security technologies to an OT/ICS environment.
- Experience and deep Understanding of key technologies such as : End Point Protection, Identity and Access management, Network segmentation, Backups.
- Demonstrated ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc.
- Knowledge of techniques and tools that promote effective analysis and the ability to determine root cause and resolution of problems.
Required Functional/Domain knowledge:
- Minimum 10 years related work experience in Operational Technology/Industrial Controls Systems Cybersecurity field with increasing levels of responsibility.
- “Hands-On” experience with OT/ICS critical infrastructure in energy or similar industries preferred.
Other preferred skills/competencies:
- Experience with OT, ICS, PCN systems, including PCN infrastructure, network and network security, applications, and databases. Functional knowledge in systems architecture for both IT and OT systems.
- Vendor-specific training on Operational Technology, ICS equipment manufacturers and internal network systems are highly preferred.
- Strong knowledge of IAM concepts, standards, and protocols, such as OAuth, OpenID Connect, SAML, SCIM, and FIDO.
- Experience with IAM tools and platforms
- Experience in working with EDR platforms such as Microsoft Defender, Symantec, McAfee, or Carbon Black.
- Experience working with end point protection tools and frameworks, such as antivirus, firewall, EDR, and DLP.
- Experience in working with Windows, Linux, and Mac operating systems and platforms.
- Excellent problem-solving, debugging, and communication skills.
- Communicates in a clear, concise, understandable manner both orally and in writing.
- Associate or Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a similar technical degree. Relevant experience will be considered.
The Perks:
- Comprehensive medical, dental and vision plans for you and your dependents
- 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
- Competitive Compensation
- Training and development programs
- Stocked kitchen with snacks and beverages
- Collaborative and cool culture
- Work-life balance and generous paid time off
***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus Carbon Black Computer Science EDR Exploits Firewalls IAM ICS Industrial Linux MITRE ATT&CK Nessus Network security NIST NIST 800-53 Nmap OpenID R&D Risk assessment SAML Vulnerabilities Vulnerability scans Windows
Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Health care Insurance Salary bonus Snacks / Drinks Startup environment Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.