This job is closed

We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.

OT/ICS Security Principal Architect

PPL - Louisville, KY

posted about 2 months ago

Full-time - Senior
Remote - Louisville, KY
1,001-5,000 employees
Utilities

About the position

The Operational Technology/Industrial Control Systems Principal Architect will play a crucial role in enhancing the cybersecurity posture of PPL Corporation's critical infrastructure. This position involves developing and implementing a comprehensive OT/ICS security strategy, ensuring secure architecture design, and collaborating with various teams to integrate security controls. The role requires a deep understanding of OT/ICS technologies and a commitment to maintaining the security and reliability of the systems that support PPL's operations.

Responsibilities

  • Develop and implement a comprehensive OT/ICS security strategy that aligns with the organization's overall security objectives and regulatory requirements.
  • Design and document secure OT/ICS architectures that meet the organization's functional and security requirements.
  • Design and/or evaluate current OT/ICS infrastructure and incorporate security principles into all stages of the System Development Lifecycle.
  • Collaborate with cross-functional teams to integrate security controls and processes into OT/ICS infrastructure and applications.
  • Complete Threat Modeling assessments, analyze impact, and develop mitigation strategies.
  • Perform security reviews of architecture, infrastructure, and applications, identify gaps, develop a security risk management plan, and execute strategies to mitigate/address identified risk.
  • Responsible for the governance of OT/ICS Security policies, procedures, and standards.
  • Offer technical guidance and support to OT/ICS operations and engineering teams.
  • Assess and recommend security tools, technologies, and services that enhance OT/ICS security posture.
  • Serve as a Subject Matter Expert on OT/ICS Security related topics, best practices, emerging technologies and the evolving threat landscape.
  • Provide guidance, coaching, and support in the development of junior staff members.
  • All other duties and projects as assigned.

Requirements

  • Bachelor's degree in Computer Science, Information Security, and/or a related field or an equivalent level of work related experience.
  • A minimum of 10+ years of direct OT/ICS security, including architecture, design, and implementation.
  • Strong understanding of OT/ICS technologies, including SCADA, PLC, and DCS systems.
  • Experience in developing and deploying defense in depth and layered architecture within an OT/ICS environment.
  • Experience in designing and implementing network infrastructure within OT/ICS environment.
  • Expertise in system hardening, including vulnerability assessment, penetration testing, and configuration management.
  • Proficiency in conducting security testing, including vulnerability scanning, and static and dynamic code analysis.
  • Expertise in OT/ICS security frameworks and standards (e.g., NERC CIP, TSA, Purdue Model).
  • Ability to follow outlined processes and procedures with high degree of accuracy.
  • Experience working in Agile teams and have knowledge of Agile principles and practices.
  • Strong analytical skills to assess risks and vulnerabilities in complex systems.
  • Strong leadership, communication, and interpersonal skills.
  • Collaborative and effective in cross-functional team environments (including Network, IAM, Monitoring and Detection, Asset Management, etc.).
  • Experience assessing, hardening, and standardizing OT/ICS access control and management.
  • Design and implementation of passive threat monitoring and detection capabilities.
  • Practical experience working with technologies from OT/ICS vendors.

Nice-to-haves

  • Direct experience in utility and/or energy related industries.
  • Proficiency in scripting and automation for security testing.
  • Experience utilizing the Scaled Agile Framework (SAFe).
  • Certified Information Systems Security Professional- CISSP.
  • Master's Degree in related technical discipline or MBA.
  • SANS ICS410: ICS/SCADA Security Essentials.
  • SANS ICS515: ICS Visibility, Detection, and Response.
  • SANS ICS612: ICS Cybersecurity In-Depth.
  • SANS GIAC Response and Industrial Defense (GRID) Certified.
  • SANS Global Industrial Cyber Security Professional (GICSP) Certified.
  • SANS GIAC Critical Infrastructure Protection (GCIP) Certified.

Benefits

  • Competitive salary and performance-based bonuses.
  • Comprehensive health insurance plans.
  • 401(k) retirement savings plan with company matching contributions.
  • Paid time off and holidays.
  • Professional development opportunities and training programs.
Job Description Matching

Match and compare your resume to any job description

Start Matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service