OT Security Engineer

October 28

Apply Now

Receive Emails with Similar Jobs

Acuity

WebsiteLinkedInAll Job Openings

Energy • Manufacturing • Technology

Acuity is a market-leading industrial technology company based in Atlanta, Georgia. It leverages technology to create innovative products and services, primarily in lighting and building management solutions. With its two main business segments, Acuity Brands Lighting and Acuity Intelligent Spaces, the company focuses on delivering smart lighting solutions and intelligent space management tools aimed at enhancing customer experiences and achieving sustainability through the use of data interoperability and advanced tech platforms. Employing approximately 13,000 associates, Acuity aims to drive growth and productivity while addressing the challenges of climate change and technological advancement.

10,000+ employees

⚡ Energy

📋 Description

• Assist with ICS policy review and creation when needed • Develop, improve, and maintain detailed processes and procedures for security activities • Work with engineering and site operations teams to include security in capital projects and daily activities • Oversee various related projects that may include numerous diverse stakeholders • Conduct comprehensive security risk assessments of ICS environments, including vulnerability assessments, testing, and risk analysis • Identify vulnerabilities and potential threats to ICS networks and systems • Develop and implement risk mitigation strategies to address identified risks • Work with gap owners to remediate identified gaps and risks • Ensure compliance with industry standards and regulations (e.g., ISA/IEC 62443, NIST) • Conduct regular audits and assessments to ensure ongoing compliance • Design, implement, and maintain security architectures for manufacturing and distribution center systems and environments • Design and implement cybersecurity countermeasures and security platforms • Implement robust network segmentation between IT and ICS networks • Perform detailed analysis of new hardware and software to identify hardening opportunities • Assist in vulnerability identification, triage, and mitigation • Monitor ICS networks for security incidents, analyze threats, and respond to incidents to minimize impact and prevent recurrence • Develop and execute incident response plans and playbooks, and provide appropriate support in Incident Response (IR) activities • Investigate security incidents and perform forensic analysis • Work closely with IT, operations, and engineering teams to integrate security best practices into ICS design and operations • Provide training and awareness programs for staff on ICS security best practices • Collaborate with external stakeholders, including vendors and regulatory bodies.

🎯 Requirements

• Proven experience protecting industrial control systems (ICS) in critical manufacturing infrastructure • Bilingual and a completed degree is required • A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.) • Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, etc.) • Knowledge of IT and OT security best practices; a practical understanding of the differences • Understanding protocols common in ICS environments (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.) • Familiar with security technologies within the ICS environment such as firewalls, IDS, endpoint security solutions, access control systems, and other related security technologies • Strong understanding of network architecture and cybersecurity principles • Excellent analytical, problem-solving, and communication skills • Ability to work independently and as part of a multidisciplinary team.

🏖️ Benefits

• Flexible work arrangements