OT Expert

The OT Expert protects industrial control systems and critical infrastructure from cyber threats. Responsibilities include designing OT security architectures, conducting risk and vulnerability assessments, enforcing IEC
62443 and NISTSP
800‑82‑based policies, deploying network segmentation and detection controls, and leading OT incident response. The role collaborates with engineering, operations, and IT teams to ensure secure and uninterrupted plant operations while maintaining compliance and reporting security posture to senior leadership.

• Design, implement, and manage security architectures for OT environments (SCADA, PLCs, DCS, HMI, IoT/IIoT devices).
• Conduct risk assessments, threat modeling, and vulnerability assessments specific to industrial control systems.
• Develop and enforce OT security policies, standards, and procedures aligned with industry frameworks (IEC
  62443, NISTSP
  800‑82).
• Lead incident response and forensic investigations for OT security events, coordinating with IT security and plant operations teams.
• Oversee the deployment and maintenance of security controls such as network segmentation, firewalls, intrusion detection/prevention systems, and secure remote access solutions.
• Provide technical guidance and mentorship to engineering, operations, and IT teams on secure OT practices.
• Manage third‑party vendor security assessments and ensure compliance with contractual security requirements.
• Stay current on emerging OT threats, vulnerabilities, and best‑practice mitigations; recommend and implement improvements.
• Prepare and present security status reports, metrics, and compliance documentation to senior leadership and auditors.
• Develop and maintain OT security reference architectures, design standards, and reusable implementation patterns to ensure consistency, scalability, and delivery quality across multiple projects and environments.
• Define and operationalize OT‑specific detection use cases and monitoring strategies, integrating industrial telemetry (e.g., historian data, OPCUA, network traffic) into SOC/SIEM platforms for contextual threat detection and response.
• Lead secure‑by‑design reviews for digital transformation initiatives (IIoT, cloud integration, remote operations), ensuring cybersecurity requirements are embedded early without impacting operational performance or safety.
• Establish and continuously improve OT incident response playbooks and decision frameworks, coordinating cross‑functional teams to enable safe, timely, and controlled response to cyber events in industrial environments.

• Bachelor’s degree in Electrical or Electronic Engineering, Computer Science, Cybersecurity, or a related field (advanced degree preferred).
• 10–12 years of progressive experience in OT security, industrial automation, or related engineering roles.
• Deep knowledge of industrial control system protocols (Modbus, DNP3, OPC‑UA, IEC
  60870‑5, etc.).
• Hands‑on experience with OT network architectures, firewalls, DMZs, and secure remote access solutions.
• Proficiency in OT‑specific security tools (e.g., IDS/IPS for OT, anomaly detection platforms, asset inventory systems).
• Strong understanding of IEC
  62443, NISTSP
  800‑82, ISO
  27019, and other relevant OT security standards.
• Experience with vulnerability management and patching processes for OT devices.
• Ability to translate security requirements into practical engineering solutions without disrupting production.
• Excellent problem‑solving, incident response, and forensic analysis capabilities.
• Strong communication skills for cross‑functional collaboration and stakeholder reporting.
• Proven ability to design and implement Purdue‑aligned architectures (zones, conduits, IT/OT DMZs, secure remote access, and segmentation strategies).
• Experience developing and tuning OT‑specific detection use cases using IDS anomaly detection platforms and integrating OT telemetry into SOC/SIEM environments for actionable threat visibility.
• Proven ability to translate standards like IEC
  62443, NISTSP
  800‑82, and ISO
  27019 into practical engineering controls, policies, and deployable solutions within live industrial environments.