Careers
Added Sep 25, 2024
OT Principal Cybersecurity Architext
(26501)
Energy
Topeka
|
Full-time
Apply
View all jobs in this category
For additional information on how we handle your data, see www.LRS.com/privacy
View all jobs in this category
Job Description
Cybersecurity Architect
We are seeking a highly skilled Cybersecurity Architect to provide technical expertise in designing and implementing security controls across both Operational Technology (OT)/Industrial Control Systems (ICS) and IT environments. This role is critical in ensuring our organization’s systems are secure and resilient against emerging threats.
Key Responsibilities:
- Design, build, implement, and support enterprise-class security systems.
- Serve as a technical liaison, aligning IT and OT units to ensure security best practices are followed.
- Identify and communicate current and emerging security threats, designing architecture elements to mitigate them.
- Plan, research, and design robust security architectures for IT projects.
- Perform and supervise vulnerability testing, risk analyses, and security assessments.
- Create solutions that balance business requirements with cybersecurity needs.
- Identify security design gaps in existing and proposed architectures, recommending necessary changes.
- Provide guidance to security and IT teams, updating security policies, procedures, and standards as needed.
- Respond to security-related incidents with thorough remedial solutions and analysis.
- Keep up-to-date with the latest cybersecurity trends, threats, and technologies, offering guidance accordingly.
- Create detailed diagrams, implementation plans, processes, and procedures to document network architecture and the operation of security solutions.
Required Experience:
- Minimum 10 years of progressive experience in technology and cybersecurity.
- At least 5 years of experience with cybersecurity systems.
- At least 5 years of experience with OT/ICS systems, preferably within critical infrastructure sectors such as energy, utilities, or transportation.
- Experience with OT/ICS communication protocols (e.g., DCS, PLCs, Modbus, OPC, SCADA).
- Demonstrated experience in security risk management, network security, identity and access management, and security monitoring technologies.
- Strong knowledge of network protocols (TCP/IP, UDP, DHCP, DNS, HTTP) and cryptology (e.g., IPSEC, AES).
- Experience presenting cybersecurity information to diverse stakeholders.
Desired Skills and Knowledge:
- Proficiency in implementing and managing security frameworks like NIST, ISO, and CIS.
- Familiarity with OT/ICS systems design and administration.
- In-depth knowledge of network security standards and compliance with corporate security policies.
- Experience with ethical hacking, penetration testing, and cybersecurity frameworks like MITRE ATT&CK.
- Knowledge of cloud computing security and the challenges of workload transition.
- Understanding of DevOps methodology and its integration with security practices.
Stronger candidates will have one or more of the following certifications:
- Certified SCADA Security Architect (CSSA)
- GIAC certifications (e.g., GICSP, GRID)
- ISA/IEC 62443 Cybersecurity Certificates
- Networking certifications (e.g., CCNA, CCNP)
- Cybersecurity certifications (e.g., CEH, CISA, CISM, CCSP)
Working Conditions:
- Primarily office-based with occasional fieldwork.
- Occasional travel required for meetings and site visits.
- Must be able to work additional hours as needed, in various weather conditions