Grainger
Senior Security Engineer - Operational Technology Network
Grainger, Lake Forest, Illinois, United States, 60045
Senior Security Engineer - Operational Technology Network
Grainger is seeking an Operational Technology Network Security Engineer with a strong background in network security skills and the Operational Technology (OT) / Industrial Control System (ICS) domain. This mid-level engineering role not only requires a broad understanding of network security concepts but also requires a strong technical understanding of OT/ICS security concepts and the ability to implement security controls that meet the intended design. The successful candidate is familiar with general security engineering concepts, is comfortable in a cross-functional engineering environment, and is comfortable identifying security concerns and recommending appropriate mitigations. As an Operational Technology Network Security Engineer, you will protect Grainger OT assets by implementing advanced network security tools, automating, integrating Grainger network security tools and processes, and collaborating across the Information Security and IT organizations including making smart long-term decisions. You will report to the Senior Manager of Information Security Engineering. Core Responsibilities:
Requirement Analysis: Translate security requirements into firewall design. System Deployment: Lead the installation, configuration, and integration of network security technologies including SSE & Firewalls (Palo Alto and Zscaler preferred) Collaboration: Contribute to operational and policy decisions around Firewall and SSE technologies that improve Grainger's network security and OT security program Tailor Security Configurations: Adapt security settings to meet the unique operational needs of Grainger's OT systems while achieving defined security outcomes. Automation & Integration Runbooks: Develop automation scripts and author integration runbooks to ensure seamless and repeatable security tool implementations. System Troubleshooting: Quickly diagnose and resolve configuration or performance issues while ensuring minimal disruption to operations. Continuous Improvement: Leverage and deploy observability tools to ensure consistent and continual system performance that meets business demand. Security Audits: Conduct regular security audits to identify vulnerabilities and implement remedial actions. Incident Response: Develop and implement incident response plans to address security breaches and mitigate potential damage. Collaboration with Architecture: Translate strategic security designs into practical, secure network implementations across the operational environment. You have: Bachelor's/master's degree in a relevant field (e.g., Cybersecurity, Electrical Engineering, Computer Science, etc.); or an equivalent level of knowledge gained through on-the-job experience. 3+ years of experience designing and implementing Network Firewalls (Palo Alto preferred) and SSE technologies (Zscaler preferred) with a minimum of 2 years in OT Security 5+ years required of combined IT and Information Security work experience with a broad exposure to Infrastructure & Networks within multi-platform and cloud environments Experience automating Network Security solutions (eg: Python, Ansible) Experience with Agile Scrum methodology Relevant industry certifications such as CISSP, GICSP, CCNA/CCIE, PCNSE, or ISA/IEC 62443 Cybersecurity Expert Have strong technical understanding of the following: Secure Remote Access methods specific to the OT domain. Experience may include Zscaler, Beyond Trust, CyberArk, Xage. Network segmentation and supporting engineering models OT network monitoring and intrusion detection systems. These may include Dragos, Nozomi, and Claroty. Modern-day network designs which account for the hybrid and connected nature of new & emerging technologies (Industry 4.0, edge compute, and CPwE Cloud Connectivity). A working understanding of major Cloud Service Providers A working understanding of OT Incident Response procedures Experience translating architectural designs into functional and secure operational deployments Working understanding of the IEC/ISA 62443 framework We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex (including pregnancy), national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, protected veteran status or any other protected characteristic under federal, state, or local law. We are proud to be an equal opportunity workplace. We are committed to fostering an inclusive, accessible work environment that includes both providing reasonable accommodations to individuals with disabilities during the application and hiring process as well as throughout the course of one's employment.
Grainger is seeking an Operational Technology Network Security Engineer with a strong background in network security skills and the Operational Technology (OT) / Industrial Control System (ICS) domain. This mid-level engineering role not only requires a broad understanding of network security concepts but also requires a strong technical understanding of OT/ICS security concepts and the ability to implement security controls that meet the intended design. The successful candidate is familiar with general security engineering concepts, is comfortable in a cross-functional engineering environment, and is comfortable identifying security concerns and recommending appropriate mitigations. As an Operational Technology Network Security Engineer, you will protect Grainger OT assets by implementing advanced network security tools, automating, integrating Grainger network security tools and processes, and collaborating across the Information Security and IT organizations including making smart long-term decisions. You will report to the Senior Manager of Information Security Engineering. Core Responsibilities:
Requirement Analysis: Translate security requirements into firewall design. System Deployment: Lead the installation, configuration, and integration of network security technologies including SSE & Firewalls (Palo Alto and Zscaler preferred) Collaboration: Contribute to operational and policy decisions around Firewall and SSE technologies that improve Grainger's network security and OT security program Tailor Security Configurations: Adapt security settings to meet the unique operational needs of Grainger's OT systems while achieving defined security outcomes. Automation & Integration Runbooks: Develop automation scripts and author integration runbooks to ensure seamless and repeatable security tool implementations. System Troubleshooting: Quickly diagnose and resolve configuration or performance issues while ensuring minimal disruption to operations. Continuous Improvement: Leverage and deploy observability tools to ensure consistent and continual system performance that meets business demand. Security Audits: Conduct regular security audits to identify vulnerabilities and implement remedial actions. Incident Response: Develop and implement incident response plans to address security breaches and mitigate potential damage. Collaboration with Architecture: Translate strategic security designs into practical, secure network implementations across the operational environment. You have: Bachelor's/master's degree in a relevant field (e.g., Cybersecurity, Electrical Engineering, Computer Science, etc.); or an equivalent level of knowledge gained through on-the-job experience. 3+ years of experience designing and implementing Network Firewalls (Palo Alto preferred) and SSE technologies (Zscaler preferred) with a minimum of 2 years in OT Security 5+ years required of combined IT and Information Security work experience with a broad exposure to Infrastructure & Networks within multi-platform and cloud environments Experience automating Network Security solutions (eg: Python, Ansible) Experience with Agile Scrum methodology Relevant industry certifications such as CISSP, GICSP, CCNA/CCIE, PCNSE, or ISA/IEC 62443 Cybersecurity Expert Have strong technical understanding of the following: Secure Remote Access methods specific to the OT domain. Experience may include Zscaler, Beyond Trust, CyberArk, Xage. Network segmentation and supporting engineering models OT network monitoring and intrusion detection systems. These may include Dragos, Nozomi, and Claroty. Modern-day network designs which account for the hybrid and connected nature of new & emerging technologies (Industry 4.0, edge compute, and CPwE Cloud Connectivity). A working understanding of major Cloud Service Providers A working understanding of OT Incident Response procedures Experience translating architectural designs into functional and secure operational deployments Working understanding of the IEC/ISA 62443 framework We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex (including pregnancy), national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, protected veteran status or any other protected characteristic under federal, state, or local law. We are proud to be an equal opportunity workplace. We are committed to fostering an inclusive, accessible work environment that includes both providing reasonable accommodations to individuals with disabilities during the application and hiring process as well as throughout the course of one's employment.