Grainger
Senior Security Engineer - Operational Technology
Grainger, Lake Forest, Illinois, United States, 60045
Senior Security Engineer - Operational Technology
Grainger is seeking an Operational Technology Security Engineer with a strong background in core cybersecurity skills and a deep understanding of the Operational Technology (OT) / Industrial Control System (ICS) domain. This mid-level engineering role requires a broad understanding of OT/ICS security concepts and a strong technical understanding and ability to implement security controls that meet the intended design. You will be familiar with general security engineering concepts, comfortable in a cross-functional engineering environment, and comfortable identifying security concerns and recommending appropriate mitigations. This position reports to the Senior Manager of Security Engineering. You will: Deploy & Configure Security Tools: Deploy, configure, and optimize security technologies across all existing and new facilities. Tailor Security Configurations: Adapt security settings to meet the unique operational needs of Grainger's OT systems while achieving defined security outcomes. Automation & Integration Runbooks: Develop automation scripts and author integration runbooks to ensure seamless and repeatable security tool implementations. System Troubleshooting: Quickly diagnose and resolve configuration or performance issues while ensuring minimal disruption to operations. Collaboration with Architecture: Translate strategic security designs into practical, secure implementations across the operational environment. You have: Bachelor's/Master's Degree in a relevant field (e.g., Cybersecurity, Electrical Engineering, Computer Science, etc.); or an equivalent level of knowledge gained through on-the-job experience. Relevant industry certifications such as CISSP, GICSP, or ISA/IEC 62443 Cybersecurity Expert 5+ years of direct experience in the cybersecurity field with a minimum of 2 years in OT Security Have strong technical understanding of the following: Secure Remote Access methods specific to the OT domain. Experience may include Zscaler, Beyond Trust, CyberArk, Xage, etc. Network segmentation and the supporting engineering models Endpoint Detection and Response tooling, such as SentinelOne or Crowdstrike Vulnerability Management as it pertains to the OT domain OT network monitoring and intrusion detection systems. These may include Dragos, Nozomi, and Claroty. Modern-day network designs which account for the hybrid and connected nature of many new & emerging technologies (Industry 4.0, edge compute, and CPwE Cloud Connectivity). A working understanding of major Cloud Service Providers A working understanding of OT Incident Response procedures Experience following OT security policies, standards, and baselines Experience following vendor best practices to ensure a secure and resilient system Experience translating the outcomes of threat modeling exercises into actionable remediation plans Working understanding of the IEC/ISA 62443 framework We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex (including pregnancy), national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, protected veteran status or any other protected characteristic under federal, state, or local law. We are proud to be an equal opportunity workplace. We are committed to fostering an inclusive, accessible work environment that includes both providing reasonable accommodations to individuals with disabilities during the application and hiring process as well as throughout the course of one's employment, should you need a reasonable accommodation during the application and selection process, including, but not limited to use of our website, any part of the application, interview or hiring process, please advise us so that we can provide appropriate assistance.
Grainger is seeking an Operational Technology Security Engineer with a strong background in core cybersecurity skills and a deep understanding of the Operational Technology (OT) / Industrial Control System (ICS) domain. This mid-level engineering role requires a broad understanding of OT/ICS security concepts and a strong technical understanding and ability to implement security controls that meet the intended design. You will be familiar with general security engineering concepts, comfortable in a cross-functional engineering environment, and comfortable identifying security concerns and recommending appropriate mitigations. This position reports to the Senior Manager of Security Engineering. You will: Deploy & Configure Security Tools: Deploy, configure, and optimize security technologies across all existing and new facilities. Tailor Security Configurations: Adapt security settings to meet the unique operational needs of Grainger's OT systems while achieving defined security outcomes. Automation & Integration Runbooks: Develop automation scripts and author integration runbooks to ensure seamless and repeatable security tool implementations. System Troubleshooting: Quickly diagnose and resolve configuration or performance issues while ensuring minimal disruption to operations. Collaboration with Architecture: Translate strategic security designs into practical, secure implementations across the operational environment. You have: Bachelor's/Master's Degree in a relevant field (e.g., Cybersecurity, Electrical Engineering, Computer Science, etc.); or an equivalent level of knowledge gained through on-the-job experience. Relevant industry certifications such as CISSP, GICSP, or ISA/IEC 62443 Cybersecurity Expert 5+ years of direct experience in the cybersecurity field with a minimum of 2 years in OT Security Have strong technical understanding of the following: Secure Remote Access methods specific to the OT domain. Experience may include Zscaler, Beyond Trust, CyberArk, Xage, etc. Network segmentation and the supporting engineering models Endpoint Detection and Response tooling, such as SentinelOne or Crowdstrike Vulnerability Management as it pertains to the OT domain OT network monitoring and intrusion detection systems. These may include Dragos, Nozomi, and Claroty. Modern-day network designs which account for the hybrid and connected nature of many new & emerging technologies (Industry 4.0, edge compute, and CPwE Cloud Connectivity). A working understanding of major Cloud Service Providers A working understanding of OT Incident Response procedures Experience following OT security policies, standards, and baselines Experience following vendor best practices to ensure a secure and resilient system Experience translating the outcomes of threat modeling exercises into actionable remediation plans Working understanding of the IEC/ISA 62443 framework We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex (including pregnancy), national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, protected veteran status or any other protected characteristic under federal, state, or local law. We are proud to be an equal opportunity workplace. We are committed to fostering an inclusive, accessible work environment that includes both providing reasonable accommodations to individuals with disabilities during the application and hiring process as well as throughout the course of one's employment, should you need a reasonable accommodation during the application and selection process, including, but not limited to use of our website, any part of the application, interview or hiring process, please advise us so that we can provide appropriate assistance.