OT Security Engineer
London Bankside
Haleon
We are a world-leading consumer health company with a clear purpose to deliver better everyday health with humanity.Hello. We’re Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we’re improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands – including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum – through a unique combination of deep human understanding and trusted science. What’s more, we’re achieving it in a company that we’re in control of. In an environment that we’re co-creating. And a culture that’s uniquely ours. Care to join us. It isn’t a question.
With category leading brands such as Sensodyne, Voltaren and Centrum, built on trusted science and human understanding, and combined with our passion, knowledge and expertise, we’re uniquely placed to do this and to grow a strong, successful business.
This is an exciting time to join us and help shape the future. It’s an opportunity to be part of something special.
About the role – Remote work
The Operational Technology (OT) Security Engineer is a member of the Global Automation team within the Haleon Central Engineering function and will focus on supporting Haleon manufacturing and R&D automation and lab systems. The role is accountable for defining, developing, assessing, approving and delivering complex and innovative solutions to reduce OT Cyber security related risks across the Haleon network, which may inhibit manufacturing or R&D operations, resulting in safety, quality, financial or reputation impact.
The successful person will act as a Subject Matter Expert for the technology and processes related to OT Cyber Security, will ensure that good security practices are embedded across Haleon sites (currently circa 26 sites), make recommendations for improvement / oversight and provide key input in support of setting the direction of the OT security strategy.
Key responsibilities
- Support in the management of the OT Security Strategy for automation and lab systems across Haleon.
- Act as technical authority or subject matter expert for changes on infrastructure (firewall, cloud, etc.) for approximately 26 Manufacturing and R&D sites on OT cyber security within the automation and lab space.
- Define standards, define, review firewall rules to facilitate integration with IT & MES systems whilst maximizing protection of the automation and lab systems hosted on the OT network infrastructure.
- Lead global initiatives and work closely with key vendors to ensure vulnerabilities & threats are risk assessed and develop appropriate mitigation activities where required.
- Work with sites to ensure that automation and lab systems are protected with the appropriate level of cyber security protection and security controls based on defense in depth principles.
- Act as the technical escalation point where necessary as part of a technical support escalation or lead during incident investigations and/or site recovery.
Qualifications and skills
Essential
- Degree in an engineering or software/IT related discipline.
- At least 5 years experience working within Operational Technology or IT Network Security.
- Palo-Alto Firewalls knowledge/certification.
- Excellent English language communication and written skills.
Preferred
- Knowledge of ISA Standards (ISA/IEC62443, S95, S88) and the NIST Framework and/or Certification.
- Expertise on securing OT network architecture, firewalls and firewall rule sets as they pertain to OT network traffic.
- Hands on experience in networking and interfacing of Manufacturing Operational Technology such as:
- Control systems from a wide range of vendors (PLC and SCADA) & Manufacturing Execution Systems (Data historians, EBR, OEE)
- Elisity, Cisco, platforms knowledge/certification.
- Deep hands on IT/OT experience in a complex environment (High Volume Manufacture, FCMG) with proven execution capabilities.
- Ability to work independently and cross-collaborate in a fast-paced environment where technology and sites requirements change regularly.
- Ability to think outside the box to solve complex issues and support/manage the development of complex network/firewall infrastructure.
- Ability to demonstrate credibility as a technical authority to a broad range of stakeholders from CISO to site leadership team.
- CCNP, CCSE, PCNSA, PCNSE, AZURE/AWS Cloud Administrator / Security.
Please save a copy of the job description, as this may be helpful to refer to once the advert closes.
Diversity, Equity and Inclusion
At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We’re striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives.We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.
Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/
At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.
As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.
Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, Haleon may be required to capture and report expenses Haleon incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure Haleon’s compliance to all federal and state US Transparency requirements.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation AWS Azure CCNP CISO Cloud Compliance Firewalls Network security NIST PCNSA R&D SCADA Security strategy Strategy Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.