Allegis Group - Kansas City, KS
posted 2 months ago
Full-time - Mid Level
Kansas City, KS
10,001+ employees
Administrative and Support Services
About the position
As an Operational Technology (OT) Security Engineer at DFA, you will collaborate with cross-functional teams to design, implement, and maintain cybersecurity measures that protect manufacturing capabilities from threats and vulnerabilities. This role involves developing cybersecurity standards, conducting risk assessments, and ensuring compliance with industry regulations to enhance the OT security framework.
Responsibilities
- Assist in the design, monitoring, and enforcement of cybersecurity standards, procedures, and controls for manufacturing plant environments.
- Work with manufacturing sites, engineering, and IT teams to analyze existing OT architecture and ensure seamless integration of cybersecurity measures.
- Develop and maintain OT-specific cybersecurity documentation, including risk registers and detailed reports.
- Assess and analyze current security architectures to identify vulnerabilities and develop enhanced protections.
- Develop and implement an ongoing vulnerability detection and remediation program for OT systems.
- Conduct cybersecurity risk assessments on OT systems and networks using frameworks like NIST CSF and ISO 27001.
- Continuously monitor OT networks and systems for unusual activities and potential security breaches.
- Develop and maintain an incident response plan for OT-related cybersecurity incidents.
- Engage in continuous improvement of cybersecurity risk management policies and procedures.
- Conduct training sessions and awareness programs for employees to promote cybersecurity best practices.
Requirements
- Bachelor's degree in information security, computer science, or related field (work experience may substitute for education).
- Minimum of 3 years' work experience in information security, IT, or industrial control systems (ICS) engineering.
- Basic understanding of Programmable Logic Controllers (PLC), Windows-based PCs, and industrial network architectures.
- Experience in industrial control systems (ICS) security is highly desirable.
- Proficiency in cybersecurity technologies, including firewalls and intrusion detection systems.
Nice-to-haves
- Knowledge of common cybersecurity threats such as denial of service and ransomware.
- Capability of applying relevant cybersecurity standards and frameworks (NIST Cybersecurity Framework, ISA-62443).
- Understanding of security controls for on-premise and cloud-based platforms (AWS, Azure).
- Familiarity with SCADA system platform architectures and PLC programming.
Benefits
- Competitive salary
- Health insurance
- 401k plan with matching contributions
- Professional development opportunities
- Flexible working hours
