Senior Operational Technology Security Engineer

CA Pay Range (Annual):

At Infinera, your base pay is one part of your total compensation package. Your actual base pay will depend on your skills, qualifications, experience, and location. This role may be eligible for equity grants, discretionary bonuses, or commission payments. The amount of these incentives is based on the terms of the Company’s incentive plans, the Company’s financial performance, and/or individual employee job performance.

Infinera also offers paid leave, medical, 

dental, and vision coverage, 401(k),

life, and disability insurance to eligible employees.

Overview:

As part of the Manufacturing organization, this role will work closely with Manufacturing, IT, Cybersecurity, and other areas of the business to assess, recommend, design, implement, and manage security solutions related to Operational Technologies (OT).

Throughout the risk management cycle, identifies and defines security requirements, designs security architecture, and implements solutions to enhance the OT security program while maintaining a balance between useability and security. Configures and manages tools supporting security operations such as SIEM, EDR, vulnerability management, and security forensics tools.

Supports the Cybersecurity team on incident escalation and as a member of the incident response team.  Recommends and implements changes to security tools and procedures to enhance and automate operation of the OT security program. Remains informed and aware of security threats and events across the OT industry.

Will assist in mentoring and educating peers and business partners on OT security best practices, technologies, and on new and emerging threats. Must be able to demonstrate strong communication skills, both written and verbally.

Occasional after hours and weekend work.

Responsibilities:

• Design, implement, configure, and manage OT security tools and solutions.
• Configure and troubleshoot OT security infrastructure devices with an emphasis on balancing the security, life safety, and operational needs.
• Identify and implement solutions to automate repeatable and reliable OT security and operations tasks.
• Contribute to, document, and maintain clear communications for OT standards
• Conduct OT security forensics to aid in the collection, analysis, and reporting of incidents.
• Participate as a member of the Cybersecurity Incident Response Team providing investigation and analysis of security events.
• Architect and conduct OT security assessments through vulnerability testing, risk analysis, and reporting in a manner that assures life safety and operational success.
• Work with the Business Continuity Manager and IT to ensure that continuity of operations is planned for, documented, and tested.
• Perform process and control walkthroughs and document control narratives.
• Assist in the ongoing maintenance and process improvements of compliance programs
• Monitor OT security bulletins, alerts, and threat feeds for relevant threats.
• Understand, interpret, and comply with all organizational security policies, procedures, and other governance as provided by Infinera management and authorized stakeholders.

• Assess and recommend improvements to the OT security program.

Qualifications:

• Bachelor’s degree (B.A./B.S.) or equivalent in computer science or equivalent discipline from an accredited college or university required
• 10+ years of experience in OT environments required
• 5-8 years of experience in an OT security role
• Conversant with cybersecurity frameworks such as IEC ISA 99/62443, NIST SP 800-82, NIST 800-53, NIST CSF, and ISO 27001
• Certified Automation Professional (CAP), Certified Control Systems Technician (CCTS), Global Industrial Cyber Security Professional (GICSP), ISO 27001 Auditor, or other ICS-related certification preferred
• Expertise with networking technologies, firewalls, network design, and protocols
• Expertise with SIEM configuration, automation, and management
• Experience with deployment and management of EDR solutions
• Experience with vulnerability and patch management tools

Skills, Abilities and Competencies

• Expertise in OT / ICS systems (SCADA, DCS, PLC, EMS, etc.)
• Technical Skills:
• Expertise with Microsoft and Linux operating systems
• Strong understanding of network technology and protocols
• Expertise in OT vulnerability and risk assessment
• Knowledge of OT security forensics toolkits and malware analysis
• Familiarity with security operations center operations, security event management, and incident response
• Strong analytical and reasoning skills, particularly in solving large, complex problems
• Constantly curious and dedicated to expanding knowledge and experience
• Ability to assume high levels of responsibility and to work with a minimum of day-to-day supervision
• Ability to function as a member of the Manufacturing team, and to work collaboratively with multiple teams across global locations
• Strong written and verbal communication and interpersonal skills
• Strong customer service skills
• Strong organizational skills

#LI-DW1

#LI-Hybrid

“This position requires direct or indirect access to certain confidential information, hardware, software, technology, or technical information (referred to here as “Export-Controlled Information”) controlled under the U.S. International Traffic in Arms Regulations (ITAR) and/or the U.S. Export Administration Regulations (EAR). All personnel in this position must be eligible to or be able to obtain authorization from the appropriate agency to access applicable Export-Controlled Information. The U.S. Department of Commerce currently requires a foreign person with a most recent citizenship or permanent residency of Sudan, Ukraine, or a country currently designated in Country Group D:1, E:1 or E:2 (Supplement No. 1 to Part 740, Title 15) to have an export control license to access our Export-Controlled Information, unless they meet certain exemptions provided under U.S. export control laws and regulations. The list of applicable countries in Country Group D:1, E:1 or E:2 may be updated by the U.S. government from time to time. The current processing time for an export control license is approximately 4 to 6 months.

Your employment or engagement with Infinera shall be contingent on verifying your eligibility or requirement for obtaining a necessary license and/or authorization from the appropriate agency. You will be required to provide certain information for export control compliance assessment purposes, and your information will be reviewed by Infinera's hiring and export control teams to ensure compliance with the U.S. export control laws and regulations. Infinera will collect necessary documents (such as proof of citizenship etc.) to assess license/authorization requirements if you are offered and accept the position.”

Infinera is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Infinera complies with all applicable state and local laws governing nondiscrimination in employment.