Crane Company
Join to apply for the
OT Security Engineer
role at
Crane Company
1 day ago Be among the first 25 applicants
The
OT Security Engineer , Global Information Security (GIS) will have primary responsibility for Crane’s Operational Technology security solutions that protect Crane’s manufacturing environments. You will implement OT and IoT security solutions throughout the enterprise and ensure that OT/IoT security solutions identify threats, uncover vulnerabilities, and measure risks of operational equipment.
Coordinating with both IT and OT teams at all manufacturing sites, you will define and develop security standards and technical solutions. As a subject matter expert in the hardening and defense of OT, you will work with business units to implement security standards, securely modify systems, and implement secure network architectures during implementations of OT related projects to ensure secure system deployments.
You will work closely with other GIS functional areas, supporting security engineering, administration, operations, and incident response. You will integrate the OT/IoT security solutions with other GIS and business unit tools such as SIEM, SOAR, AD, and other tools to gain a unified view of security events and respond more effectively to security incidents both for OT and IT.
Responsibilities And Duties
Support and maintain OT/IoT security tool set and associated integrations with other systems
Collaborate with the manufacturing function across lines of business to develop and define security requirements
Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective.
Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access.
Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented
Develop and implement standard work supporting the Global OT security function and supporting solutions
Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations
Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed
Ensure security best practices are identified and integrated into all approaches and methodologies.
Define requirements and design standards to protect Crane’s OT solutions from security threats and for mitigating the impacts of these threats.
Define reference network architectures based on industry best practices and work with business units to implement for OT solutions
Consult on business unit OT projects and provide cybersecurity expertise
Qualifications And Competencies
2yrs experience with securing Operational Technology and related systems environments
Strong understanding and prior experience with the application of securing OT and related systems
Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC
Deep technical understanding of TCP/IP Networking and Firewalls
Deep technical understanding of system integration methods including API’s and authentication methods
Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards
Solid foundation cybersecurity domains such as network security, EDR, anomaly detection
Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code
Comfortable with designing and overseeing the implementation of secure OT architectures
Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments
Commitment to security training and earning corresponding certifications
Highly motivated with passion for solving complex problems
Excellent verbal and written communication skills, comfortable with presenting to Operational Teams
Flexibility to work outside regularly scheduled/normal business hours as required
Ability and desire to travel both domestically and internationally
Required: Degree in a related field or at least 4 years relevant professional experience
Required: Mobility and ability to be on your feet for long periods in a manufacturing setting
Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar
US Person as defined under EAR PART 772 AND ITAR 120.15
Seniority Level
Mid-Senior level
Employment Type
Full-time
Job Function
Information Technology
Industries
Manufacturing
This description has been designed to indicate the general nature and level of work being performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.
Crane Company. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, sexual orientation, general identity, national origin, disability or veteran status.
#J-18808-Ljbffr
OT Security Engineer
role at
Crane Company
1 day ago Be among the first 25 applicants
The
OT Security Engineer , Global Information Security (GIS) will have primary responsibility for Crane’s Operational Technology security solutions that protect Crane’s manufacturing environments. You will implement OT and IoT security solutions throughout the enterprise and ensure that OT/IoT security solutions identify threats, uncover vulnerabilities, and measure risks of operational equipment.
Coordinating with both IT and OT teams at all manufacturing sites, you will define and develop security standards and technical solutions. As a subject matter expert in the hardening and defense of OT, you will work with business units to implement security standards, securely modify systems, and implement secure network architectures during implementations of OT related projects to ensure secure system deployments.
You will work closely with other GIS functional areas, supporting security engineering, administration, operations, and incident response. You will integrate the OT/IoT security solutions with other GIS and business unit tools such as SIEM, SOAR, AD, and other tools to gain a unified view of security events and respond more effectively to security incidents both for OT and IT.
Responsibilities And Duties
Support and maintain OT/IoT security tool set and associated integrations with other systems
Collaborate with the manufacturing function across lines of business to develop and define security requirements
Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective.
Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access.
Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented
Develop and implement standard work supporting the Global OT security function and supporting solutions
Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations
Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed
Ensure security best practices are identified and integrated into all approaches and methodologies.
Define requirements and design standards to protect Crane’s OT solutions from security threats and for mitigating the impacts of these threats.
Define reference network architectures based on industry best practices and work with business units to implement for OT solutions
Consult on business unit OT projects and provide cybersecurity expertise
Qualifications And Competencies
2yrs experience with securing Operational Technology and related systems environments
Strong understanding and prior experience with the application of securing OT and related systems
Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC
Deep technical understanding of TCP/IP Networking and Firewalls
Deep technical understanding of system integration methods including API’s and authentication methods
Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards
Solid foundation cybersecurity domains such as network security, EDR, anomaly detection
Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code
Comfortable with designing and overseeing the implementation of secure OT architectures
Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments
Commitment to security training and earning corresponding certifications
Highly motivated with passion for solving complex problems
Excellent verbal and written communication skills, comfortable with presenting to Operational Teams
Flexibility to work outside regularly scheduled/normal business hours as required
Ability and desire to travel both domestically and internationally
Required: Degree in a related field or at least 4 years relevant professional experience
Required: Mobility and ability to be on your feet for long periods in a manufacturing setting
Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar
US Person as defined under EAR PART 772 AND ITAR 120.15
Seniority Level
Mid-Senior level
Employment Type
Full-time
Job Function
Information Technology
Industries
Manufacturing
This description has been designed to indicate the general nature and level of work being performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.
Crane Company. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, sexual orientation, general identity, national origin, disability or veteran status.
#J-18808-Ljbffr