OT/ICS Cybersecurity & Network Security Engineer
Tasks
- Apply security controls and best practices for OT ICS environments
- Assess risk for OT ICS IoT hardware and software
- Configure firewall rules and VLANs for OT networks
- Coordinate with vendors and internal teams on OT system changes
- Ensure minimal disruption to critical operational systems
- Evaluate design and implement security solutions aligned to NIST SP 800-82 and IEC 62443
- Identify obsolescence configuration gaps and security weaknesses
- Implement network segmentation and secure remote access
- Maintain IP addressing device inventories and configuration records
- Maintain system documentation diagrams and inventories
- Monitor OT network traffic for anomalies and unauthorized activity
- Participate in incident investigations involving OT systems
- Perform vulnerability assessments for OT ICS IoT assets
- Recommend security improvements aligned to cybersecurity frameworks
- Review OT network architectures for segmentation zoning conduits and DMZ
- Review administrative technical and cybersecurity controls
- Serve as ICS OT IoT SME
- Support PLCs RTUs HMIs SCADA BMS BAS and control systems
- Support troubleshooting root cause analysis and recovery efforts
- Support upgrades migrations and modernization of OT environments
- Support vulnerability remediation for OT assets
- Translate OT operational needs into IT security requirements
Perks/Benefits
- 401k match
- Dental insurance
- Employee development program
- Employee referral program
- Medical insurance
- Paid time off
- Paid training
- Remote work
Skills/Tech-stack
800-82 | BAS | BMS | CPS | Capture analysis | Cause analysis | Configuration Management | Cybersecurity frameworks | DMZ | Device inventory | Firewall | HMI | ICS | IDS | IEC 62443 | IP Address Management | IP address | IPS | ISA-99 | Incident Response | IoT | Log Analysis | NIST SP | NIST SP 800 | NIST SP 800-82 | Network Monitoring | Network Segmentation | Network zoning | PLC | Packet Capture | Packet capture analysis | Purdue Model | RTU | Remote Access | Risk Assessment | Root Cause Analysis | Root cause | SCADA | SP 800-82 | Secure remote access | VLAN | Vulnerability Assessment
Education
Related jobs
-
Sr. Software Engineer II (6551) USD 165K-184KApplication whitelisting | DLP | Data Loss Prevention | Data loss | Database Administration401k match | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangements | Health, dental, and vision insuranceMid-level Full TimeWashington, DC14h ago
-
CrowdStrike Falcon | Detection engineering | EDR | Endpoint detection | Incident ResponseSenior-level Full TimeRemote - USA R16h ago
-
Cyber Security Engineer (Job 1354) USD 132K-140K800-171 | 800-37 | 800-53 | AI Security | AWS401k matching | Education assistance | Learning and development | Medical/Dental/Vision | PTOMid-level Full TimeBethesda, Maryland17h ago
-
OT Security Engineer USD 120K-155KAsset Inventory | CIS Controls | CIS Controls v8 | Certificate-based authentication | Configuration Management401k matching | Company holidays | Dental insurance | Health insurance | Paid time offMid-level Full TimeOakland, CA17h ago
-
Senior Lead Engineer – AI Security USD 110K-130KAI Security | Adversarial Machine Learning | Bash | CI/CD | Data GovernanceCross-functional collaboration | Hybrid work | Professional developmentSenior-level Full TimeCincinnati, OH17h ago
-
Senior Network Engineer USD 130K-180K800-171 | AWS GovCloud | Access Control | CMMC | CloudFormationCross-functional collaboration | Mission-driven work | Remote workSenior-level Full TimeRemote, United States R18h ago
-
Mid-level Full TimeNorcross, GA, United States20h ago
-
Senior Security Engineer USD 160K-200KAPI Integration | Alerting | Automation tooling | Cyber Threat | Cyber threat analysisCatered lunches | Employee giving match | Flexible in-office schedule | Happy hours | Mobile phone stipendSenior-level Full TimeNew York, NY, United States22h ago
-
Security Operations Engineer II USD 165K-200KAWS | Azure | Bash | Cause analysis | Cloud Security401k | Dental insurance | Flexible time off | Health insurance | Paid parental leaveSenior-level Full TimeLos Angeles, California, United States22h ago
-
Senior Security Operations Engineer USD 108K-140KAPI | Automation | Distributed Systems | Incident Response | Python401k match | Employee Assistance Program (EAP) | Flexible time off | Gender neutral parental leave | Home-office allowanceSenior-level Full TimeUnited States23h ago
-
Security Operations Engineer II USD 165K-200KAWS | Automation | Azure | Behavioral analytics | Cause analysis401k | Dental insurance | Flexible time off | Health insurance | Paid parental leaveSenior-level Full TimeNew York, New York, United States1d ago
-
Information Security Engineer, Bare Metal USD 230K-310KAnsible | AppArmor | Audit Logging | BMC Security | BMC firmwareHealth, dental, and vision insurance | Paid time off | Retirement or pensionSenior-level Full TimeNew York, NY1d ago
-
Network Engineer, Systems Administrator USD 93K-135KActive Directory | Azure | Azure Local | Azure Networking | Cisco Meraki401k match | Dental insurance | Employer paid premiums | Flexible spending account | Health insuranceSenior-level Full TimeLorton, Virginia, United States R1d ago
-
Network Security and Firewall Engineer - City USD 86K-132KACLs | Access Control | Access Control Lists | Detection and prevention systems | Event managementBenefits package | Health and wellness | Professional development | Retirement contributions | Work-life balanceSenior-level Full TimeOklahoma City, OK, United States1d ago
-
Application Security Engineer USD 120K-160KAdvanced Security | Application Security Testing | Architectural risk assessment | Automation | CI/CDSenior-level Full TimeSouthlake, TX, United States1d ago
-
.Net Software Developer USD 86K-138KASP.NET | Agile Development | Angular | Application development | AzureRemote workMid-level Full TimeUnited States1d ago
-
Senior-level Full TimeChantilly, VA, United States1d ago
-
Information Security Engineer USD 108K-139KAsset Inventory | CASB | CIS | Cause analysis | Cloud Security401k | Dental insurance | Disability insurance | Health insurance | Life insuranceSenior-level Full TimeRemote, United States R1d ago
-
Senior Security Engineer, Digital Asset Custody USD 115K-115KAI tools | C# | C++ | Cryptography | Disaster RecoveryBonus or incentive opportunities | In-office collaboration | On-site work requirementSenior-level Full TimeSouthlake, TX, United States1d ago
-
Network Engineering, Advisor USD 104K-166KBGP | Backup and Recovery | Cisco | Cisco Systems | EVPNMentorship | On call operational support rotation | On site with teleworkSenior-level Full TimeGermantown, MD, United States1d ago
-
Senior Cybersecurity Engineer USD 113K-237KAMIs | Amazon EBS | Amazon EC2 | Amazon RDS | Amazon S3Comprehensive benefits | Continuing education | Family support | Financial benefits | Flexible time offSenior-level Full TimeBRB SPRINGFIELD VA, United States1d ago
-
Information Systems Security Engineer USD 75K-158K800-171 | 800-37 | 800-53 | Amazon Web Services | Amazon Web Services (AWS)Continuing education | Family support benefits | Flexible time off | Healthcare | Learning and development resourcesMid-level Full Time606 KING OF PRUSSIA PA, United …1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Authorization | CryptographyCareer growth | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
Senior Full-Stack Security/GRC Platform Engineer USD 86K-129KAWS | Alembic | Async Programming | Async workers | Audit Logging401k retirement plan | Commuter benefits | Dental insurance | Employee assistance program | Employee referral programSenior-level Full TimeHome Office: Murray, UT, United States1d ago
-
Cybersecurity Engineer USD 68K-137KActive Directory | Configuration baselines | Container Security | Docker | EDRMid-level Full TimeCollege Park, MD, United States1d ago