OT Security Engineer

Job Summary

We're seeking a talented OT/ICS cybersecurity specialist to join the Acuity OT/ICS Cyber Security team. You will work closely with other Supply Chain, Engineering, Cybersecurity, IT, and Risk team members to design, implement, and manage security measures for industrial control systems. This role involves conducting security assessments, identifying and mitigating risks, developing security countermeasures, and ensuring compliance with industry standards. The ideal candidate will have a strong background in both cyber security and industrial control systems, with a focus on protecting manufacturing environments.

Location is flexible — we welcome applicants from outside Monterrey!

Key Tasks & Responsibilities (Essential Functions)

Security Governance:

• Assist with ICS policy review and creation when needed.
• Develop, improve, and maintain detailed processes and procedures for security activities.
• Work with engineering and site operations teams to include security in capital projects and daily activities.
• Oversee various related projects that may include numerous diverse stakeholders.

Risk and Compliance Management:

• Conduct comprehensive security risk assessments of ICS environments, including vulnerability assessments, testing, and risk analysis.
• Identify vulnerabilities and potential threats to ICS networks and systems.
• Develop and implement risk mitigation strategies to address identified risks.

• Work with gap owners to remediate identified gaps and risks.

• Ensure compliance with industry standards and regulations (e.g., ISA/IEC 62443, NIST).
• Conduct regular audits and assessments to ensure ongoing compliance.

Security Design and Implementation:

• Design, implement, and maintain security architectures for manufacturing and distribution center systems and environments.
• Design and implement cybersecurity countermeasures and security platforms.
• Implement robust network segmentation between IT and ICS networks

System Hardening and Vulnerability Management:

• Performed detailed analysis of new hardware and software to identify hardening opportunities.
• Assist in vulnerability identification, triage, and mitigation.

Monitoring and Incident Response:

• Monitor ICS networks for security incidents, analyze threats, and respond to incidents to minimize impact and prevent recurrence.
• Develop and execute incident response plans and playbooks, and provide appropriate support in Incident Response (IR) activities.
• Investigate security incidents and perform forensic analysis.

Collaboration and Training:

• Work closely with IT, operations, and engineering teams to integrate security best practices into ICS design and operations.
• Provide training and awareness programs for staff on ICS security best practices.
• Collaborate with external stakeholders, including vendors and regulatory bodies.

Skills and Minimum Experience Required

An ICS Security Operations Specialist will have proven experience protecting industrial control systems (ICS) in critical manufacturing infrastructure:

• Bilingual and a completed degree is required. 
• A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.).
• Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, etc.).
• Knowledge of IT and OT security best practices; a practical understanding of the differences.
• Understanding protocols common in ICS environments (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.).
• Familiar with security technologies within the ICS environment such as firewalls, IDS, endpoint security solutions, access control systems, and other related security technologies.
• Strong understanding of network architecture and cybersecurity principles.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a multidisciplinary team.

• #LI-DP1