Responsibilities
- Design and implement cybersecurity protections for operational technology systems using firewalls, intrusion detection and prevention tools, and endpoint security platforms.
- Execute the organization's OT cybersecurity strategy, covering network architecture, segmentation, and continuous monitoring across industrial sites.
- Configure and sustain Cisco networking equipment—including switches, routers, VLANs, and wireless controllers—within OT network infrastructures.
- Operate and maintain firewall systems from WatchGuard, Fortinet, and Palo Alto to secure OT networks, DMZs, and remote access points.
- Develop, set up, and deploy OT demilitarized zones to isolate and protect critical control systems.
- Oversee networking operations in OT environments hosted on Amazon Web Services (AWS).
- Implement network segmentation aligned with the Purdue Model, following ISA-95, ISA 62443, and NIST SP 800-82 standards to separate IT, OT DMZ, and plant layers.
- Partner with IT, electrical reliability, and site teams to securely connect IT systems with PLCs, DCS, BMS, and SIS within OT networks.
- Support and deploy secure remote access methods, including VPNs, jump hosts, and multi-factor authentication.
- Assist in managing asset inventories, identifying vulnerabilities, detecting intrusions, and responding to incidents using tools like Claroty, Palo Alto, and SIEM platforms.
- Monitor network performance, resolve technical issues, and ensure high availability of OT systems.
- Maintain accurate network diagrams, architectural records, and configuration standards for all OT environments.
- Participate in risk evaluations, compliance audits, and disaster recovery planning for OT systems.
- Provide technical assistance for OT networking challenges across multiple facility locations.
- Define and manage Process Control Network domains and associated user access controls.
- Collaborate with IT infrastructure teams to deploy and maintain security technologies within plant OT environments.
- Coordinate with external vendors and contractors to ensure their systems comply with organizational security policies.
- Stay current with evolving cybersecurity threats, industry standards, and emerging technologies to maintain robust OT defenses.
- Work with IT and engineering groups to integrate OT systems into the broader IT ecosystem securely and in compliance with regulations.
- Investigate, analyze, and resolve security incidents and alerts using both automated tools and manual analysis techniques.
- Support audit processes and remediation efforts as needed.
- Lead efforts to assess the current and emerging threat landscape, delivering clear risk assessments for operational environments.
- Help create training materials, operational procedures, and documentation for internal and external stakeholders.
- Demonstrate strong expertise in supporting and resolving issues related to network infrastructure assets.
Benefits
- Base salary range of $150,000 - $160,000 USD ($180,000 - $190,000 CAD), plus bonus, benefits, and additional incentives. Comprehensive family-friendly benefits and opportunities for career advancement are offered. Compensation stated reflects base pay only.
Compensation
Base salary range of $150,000 - $160,000 USD ($180,000 - $190,000 CAD), plus bonus, benefits, and additional incentives. Compensation stated reflects base pay only.
Work Arrangement
Hybrid — home-based within Canada or the US
Team
Reports to Senior Manager, Electrical Reliability
Other
- Reports To: Senior Manager, Electrical Reliability
- Primary Location: Home Based within Canada or US (with 50% travel required)
- Flexibility to travel (~25%) to plant sites
- Safety-first mindset when working in chemical plant environments.