OT/ICS Cyber Security Engineer

We use technology to solve problems in spaces, light, and more things to come for our customers, our communities, and our planet. 
 
Acuity Brands, Inc. (NYSE: AYI) is a market-leading industrial technology company. We use technology to solve problems in spaces, light, and more things to come. Through our two business segments, Acuity Brands Lighting and Lighting Controls (ABL) and the Intelligent Spaces Group (ISG), we design, manufacture, and bring to market products and services that make a valuable difference in people’s lives.  
 
We are positioned at the intersection of sustainability and technology. Our businesses develop technology that helps save our customers energy and reduce their carbon emissions. We achieve growth through the development of innovative new products and services, including lighting, lighting controls, building management solutions, and location-aware applications. 

Our Team

Have you ever entered a building and been immersed in a sea of lights and noticed the shades automatically adjust? Have you experienced a smart environment that has personalized lighting for different settings and occasions? Modern lighting and controls are everywhere, transforming how we interact with our digital world. The Industrial Control Systems (ICS) Cyber Security team plays a crucial role in safeguarding an organization’s critical infrastructure and control systems, leveraged in manufacturing our lighting, controls and building management products.

Acuity Brands is the North American market leader in innovative lighting solutions. Our lights are computing, sensing, network connected platforms are everywhere where there are people. We have plenty of awesome projects to work on! Our team is expanding and looking for an OT/ICS Cyber Security Engineer to help in our endeavors.
 

Job Summary

We're seeking a talented OT/ICS Cyber Security Engineer to join the Acuity ICS Cyber Security team. You will work closely with other Cybersecurity, Supply Chain, and manufacturing team members to assess, design, implement, and manage security measures for industrial control systems. This role involves conducting security assessments, identifying and mitigating risks, developing security protocols, and ensuring compliance with industry standards. The ideal candidate will have a strong background in both cyber security and industrial control systems, with a focus on protecting ICS infrastructure.

 

What You Will Do

Responsibilities for this job include but are not limited to:

Security Design and Implementation:

• Design, implement, and maintain security architectures for ICS
• Deploy, configure, and manage ICS cybersecurity tools
• Collaborate with manufacturing engineers to design and implement secure and resilient manufacturing systems
• Implement robust network segmentation between IT and ICS networks
• Ensure backup procedures are implemented and regularly tested and that backups are isolated from network connections.

Security Governance:

• Assist with ICS policy review and creation when needed
• Conduct periodic security audits to evaluate compliance with the ICS Security Policies
• Maintain detailed documentation of security policies, procedures, and incident reports
• Assist in maintaining an ICS asset inventory and updating ICS inventory records

Risk Assessment and Management

• Conduct comprehensive security risk assessments of ICS environments, including vulnerability assessments, testing, and risk analysis
• Identify vulnerabilities and potential threats to ICS networks and systems
• Develop and implement risk mitigation strategies to address identified risks
• Work with gap owners to remediate identified gaps and risks. 
   

System Hardening and Patch Management:

• Implement system hardening techniques to protect ICS from cyber threats
• Assist with the management of ICS patching Lifecycles. Assist asset owners in communications with vendors to identify proper patch levels and schedule update windows
• Responsible for familiarizing themselves with each factory's BCP/DR Plans and ensuring that critical ICS devices and systems are covered. Assist in testing BCP/DR plans to assess readiness

Collaboration and Training:

• Work closely with IT, operations, and engineering teams to integrate security best practices into ICS design and operations
• Provide training and awareness programs for staff on ICS security best practices
• Collaborate with external stakeholders, including vendors and regulatory bodies.

Required Skills & Qualifications

An OT/ICS Cyber Security Engineer will have proven experience protecting industrial control systems (ICS) in critical manufacturing environments:

• A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.).  Experience in manufacturing environments is a plus but not required
• Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, etc.)
• Knowledge of IT and OT security best practices; a practical understanding of the differences
• Understanding protocols common in ICS environments (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.)
• Familiar with security technologies within the ICS environment, such as firewalls, IDS, endpoint security solutions, access control systems, and other related security technologies
• Strong understanding of network architecture and cybersecurity principles.
• Excellent analytical, problem-solving, and communication skills
• Ability to work independently and as part of a multidisciplinary team
• Minimum 3+ years of related work experience
• Relevant degree is a plus. In lieu of a degree, comparable experience will be considered
• Industry certifications will be viewed favorably (e.g., ISA 62243 certifications, GICSP, GRID, GCIP, etc.)

About You

• You are curious, like to learn about new technologies, and seek to understand how things work.
• You are proactive, passionate, and optimistic.
• You are innovative – you challenge assumptions.
• You encourage those around you to create their best work.
• You always work for the best interests of the group.
• You have unwavering personal integrity and a strong work ethic.
• You graciously give and receive feedback.
• You have a strong understanding of network security principles and practices.
• You have experience with security tools and technologies (e.g., firewalls, IDS/IPS, SIEM).
• You have familiarity with industry frameworks and standards (e.g., NIST, ISA/IEC 62443).
• You have excellent problem-solving skills and attention to detail.

Why is Acuity Brands a great place for Cyber Security Professionals?

• Our team is a strategic part of the direction of our company
• Our company is a very profitable market leader and provides financial stability
• You will work with exceptionally talented, fun, and supportive teams
• We believe in a healthy work/life balance
• We produce quality technology solutions that you can be proud of

We value diversity and are an equal opportunity employer.  All qualified applicants will be considered for employment without regards to race, color, age, gender, sexual orientation, gender identity and expression, ethnicity or national origin, disability, pregnancy, religion, covered veteran status, protected genetic information, or any other characteristic protected by law. 

Please click here and here for more information.

Accommodation for Applicants with Disabilities:  As an equal opportunity employer, Acuity Brands is committed to providing reasonable accommodations in its application process for qualified individuals with disabilities and disabled veterans. If you have difficulty using our online system due to a disability and need an accommodation, you may contact us at (770) 922-9000.  Please clearly indicate what type of accommodation you are requesting and for what requisition. 

Any unsolicited resumes sent to Acuity Brands from a third party, such as an Agency recruiter, including unsolicited resumes sent to an Acuity Brands mailing address, fax machine or email address, directly to Acuity Brands employees, or to Acuity Brands resume database will be considered Acuity Brands property. Acuity Brands will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.

Acuity Brands will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. This includes any Agency that is an approved/engaged vendor, but does not have the appropriate approvals to be engaged on a search.

E-Verify Participation Poster

e-verify.gov

eeoc.gov

The range for this position is $93,000.00 to $167,400.00. Placement within this range may vary, depending on the applicant’s experience and geographic location.