Senior OT Security Engineer
Stevenage
GSK
At GSK, we unite science, technology and talent to get ahead of disease togetherGSC R&D Engineering Services provides Facilities Management, Engineering and Capital Projects delivery for Technical R&D sites within GSC’s Engineering and EHS organisation. We do this by simplifying decision making and clarifying accountabilities at all levels to drive performance. We leverage talent within our GSK and Service Partner organizations and deploy engineering and technology solutions that will drive efficiencies and compliance.
This is to enable scientists to focus on discovery and development of GSK’s portfolio of products, to impact the health of billions of people by the end of the decade.
The primary purpose of the Senior OT Security Engineer role is to hold the status of OT Cyber Security Champion, providing technical expertise to support a diversity of facilities equipment, automation and control systems across the UK cluster (3 UK R&D sites - Stevenage, Addenbrookes and Harlow). The role will work closely with the site operations team, automation team, capital projects and service partner organisations and it is expected to provide as well hands-on engineering support (L2 support) wherever is required. The role will manage consistent execution and compliance within Automation and OT engineering programmes across the 3 sites through provision of engineering and project management skills.
We create a place where people can grow, be their best, be safe, and feel welcome, valued and included. We offer a competitive salary, an annual bonus based on company performance, healthcare and wellbeing programmes, pension plan membership, and shares and savings programme.
We embrace modern work practises; our Performance with Choice programme offers a hybrid working model, empowering you to find the optimal balance between remote and in-office work.
Discover more about our company wide benefits and life at GSK on our webpage Life at GSK | GSK
In this role you will:
- Technical Authority - To act as the OT Network (OTN) Technical authority on related matters where required for the cluster (3 UK R&D sites – 3 OTNs).
- Projects - Responsible for ensuring that all projects and engineering changes at the cluster comply with the GSK OT Security standards, guidance, processes and procedures.
- OT Security Risk Management - Owning and managing site OT Security risks with a view to reduce risks to an acceptable level, and then maintain or reducing said level. This involves working closely with the above site OT Security Manager to prioritise mitigation actions in alignment with the region’s strategy and available budget
- Technical support - Responsible for providing technical leadership during solution design, development, testing and implementation.
- Technical authors/approvers of local processes & procedures
- To act as an advocate for OT Cybersecurity, enabling operations/projects to maximize the exploitation of technology while the OT Security is maintained. This involves working closely with the site Automation Manager to bring continuous improvements.
Why you?
Basic Qualifications & Skills:
We are looking for professionals with these required skills to achieve our goals:
- HNC or Degree level in Computing, Networks, Electrical and Electronic Engineering or related engineering discipline
- Specialist training in OT Cyber Security (SANS ICS410/ICS515 and/or ISA/IEC 62443 or equivalent)
- Basic knowledge of the IT/OT networks principles
- Basic knowledge of Automation/ICS/OT systems (BMS, PLC, HMI, Field Instrumentation, etc..)
- Experience in Cyber Security risk reduction for IT/OT infrastructure.
- Proven ability to manage contractor/consultant staff
Preferred Qualifications & Skills:
If you have the following characteristics, it would be a plus:
- Proven experience in supporting Automation/ICS/OT systems (PLC, HMI, Field Instrumentation) for off the shelf and bespoke facilities equipment (Boilers, Electrical/Water Systems, etc..)
- Strong Knowledge of IT/OT infrastructure and proven experience in delivering capital projects to achieve Cyber Security risk reduction
- Experience with enterprise firewalls & networking, Palo Alto & Cisco preferred
- Experience with industrial networks (e.g. Profibus, Fieldbus, Ethernet, Modbus, Backnet and Serial comms 485, RS232 etc.)
- Leadership skills to enhance the cybersecurity mindset of the workforce on site and be the main advocate of the OT Security standards
- Strong experience in a pharmaceutical or related industry
Closing Date for Applications – 4th December 2024.
Please take a copy of the Job Description, as this will not be available post closure of the advert.
When applying for this role, please use the ‘cover letter’ of the online application or your CV to describe how you meet the competencies for this role, as outlined in the job requirements above. The information that you have provided in your cover letter and CV will be used to assess your application.
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).
Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.
As an Equal Opportunity Employer, we are open to all talent. In the US, we also adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to neurodiversity, race/ethnicity, colour, national origin, religion, gender, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class*(*US only).
We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.
Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on Ukdiversity.recruitment@gsk.com or 0808 234 4391.
Please note should your enquiry not relate to adjustments, we will not be able to support you through these channels. However, we have created a UK Recruitment FAQ guide. Click the link and scroll to the Careers Section where you will find answers to multiple questions we receive
As you apply, we will ask you to share some personal information which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure GSK’s compliance to all federal and state US Transparency requirements. For more information, please visit GSK’s Transparency Reporting For the Record site.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation Compliance Ethernet Firewalls ICS IEC 62443 Industrial Modbus R&D Risk management SANS Strategy
Perks/benefits: Career development Competitive pay Health care Salary bonus Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.