OT Security Engineer
Role summary
We are seeking an experienced Operational Technology (OT) Security Engineer to secure industrial control systems and critical infrastructure. This role involves developing and executing OT security strategies, conducting risk assessments, designing network segmentation, and leading incident response for ICS, SCADA, DCS, PLC, RTU, and HMI environments. You will monitor OT/ICS networks using specialized tools, ensure compliance with standards like IEC 62443 and NIST SP 800-82, and collaborate with IT and operations teams. The ideal candidate will have a strong understanding of OT protocols and security frameworks, with hands-on experience in ICS/SCADA platforms and security monitoring tools. This is a remote position based in the United States.
Role Overview
We are looking for a seasoned Operational Technology (OT) Security Engineer with end-to-end expertise in securing industrial control systems and critical infrastructure. The successful candidate will bridge IT and OT environments, driving security strategy, architecture, and operations across the full OT security lifecycle.
Key Responsibilities
- Develop and execute OT security strategy covering ICS, SCADA, DCS, PLC, RTU, and HMI environments.
- Conduct OT-specific risk assessments, asset inventories, and vulnerability management programs.
- Design and implement OT network segmentation, demilitarized zones (DMZ), and secure remote access solutions.
- Lead OT incident response activities including detection, containment, forensics, and recovery.
- Monitor OT/ICS networks using specialized tools (Claroty, Dragos, Nozomi, Fortinet OT, etc.).
- Ensure alignment with ICS/OT security standards: IEC 62443, NERC CIP, NIST SP 800-82.
- Partner with engineering, operations, and IT teams to embed security into the OT change management process.
- Perform threat modelling and red/blue team exercises tailored to OT environments.
- Develop OT security policies, procedures, and awareness programs for operational staff.
Required Qualifications
- Minimum 4–5 years of dedicated experience in OT/ICS cybersecurity.
- Comprehensive understanding of OT protocols: Modbus, DNP3, PROFINET, OPC-UA, EtherNet/IP, BACnet.
- Hands-on experience with ICS/SCADA platforms (Siemens, Honeywell, ABB, Rockwell, Schneider Electric, GE).
- Strong knowledge of OT security frameworks: IEC 62443, NIST SP 800-82, NERC CIP.
- Experience designing OT network segmentation, purdue model architectures, and secure IT/OT integration.
- Familiarity with OT-specific security monitoring and asset discovery tools.
- Solid understanding of both IT security concepts and OT operational constraints.
Preferred Qualifications
- Certified GIAC Global Industrial Cyber Security Professional (GICSP) or ISA/IEC 62443 Cybersecurity Certificate.
- Experience in critical infrastructure sectors: energy, utilities, oil & gas, manufacturing, or water.
- Exposure to cloud-connected OT environments and IIoT security.
- Knowledge of regulatory environments (NERC CIP, TSA Pipeline, NRC, etc.).
- Experience conducting OT penetration testing or red team assessments.
Work Location
This role is open to candidates based in the United States. Occasional travel to client or facility sites may be required.
Work Location: Remote
Similar roles
OT Security EngineerTekgence Inc · Collegeville, Pennsylvania, United States · Onsite
OT Security EngineerAdapture Renewables · Oakland, California, United States · Onsite
OT Security EngineerGSK Solutions · Cambridge, Massachusetts, United States · Onsite
Senior OT Security EngineerOldcastle Infrastructure · Atlanta, Georgia, United States · Hybrid
OT Security EngineerInsight Global · Louisiana, United States · Onsite