Lead Engineer - Operational Technology Network Security

• Leads the design implementation and ongoing maintenance of security controls across operational technology networks distribution center environments industrial control systems building automation systems IoT devices and connected operational platforms.
• Develops refines and implements OT security policies procedures standards and reference architectures across multiple industrial network cloud and application environments to meet internal and external compliance responsibilities.
• Oversees maintenance of service-level agreements and control performance expectations to ensure OT network security services monitoring capabilities and response activities are operating effectively.
• Partners with business IT engineering facilities and operations leaders to communicate OT security risks evaluate business impact and respond to requests for technical guidance assistance and information.
• Coordinates with network engineers infrastructure teams systems administrators and site operations teams to ensure OT servers network devices industrial systems and security devices conform to enterprise security standards and are operating as designed.
• Reviews technical and functional design documents and provides security architecture guidance for OT networks network segmentation remote access identity and access management secure connectivity and data flows between IT and OT environments.
• Builds maintains and implements cybersecurity network security data security and cloud-integrated security solutions that protect physical and intangible company assets.
• Serves as a subject matter expert for OT network security including Purdue Model architecture network segmentation secure remote access firewall policy industrial protocol considerations asset visibility and compensating controls for legacy systems.
• Monitors analyzes and communicates emerging cyber threats vulnerabilities exploits and adversary techniques relevant to OT environments distribution centers network infrastructure and connected operational technologies.
• Provides technical support to network administrators and systems administrators monitors and maintains current infrastructure improves system performance and automates security administration where appropriate.
• Responds to security alerts involving OT or network environments escalates critical incidents to appropriate support teams and participates in incident response exercises tabletop exercises and remediation efforts.
• Analyzes security metrics operational control data and KPIs to generate insights for executive and technical leadership review.
• Provides security briefings and technical recommendations to advise stakeholders on critical issues that may affect enterprise operations distribution center availability network resilience or regulatory compliance.
• Consults with business and technical teams on the security impact of proposed technology configuration process or architectural changes within OT and industrial network environments.
• Collaborates with product engineering operations and information systems teams to ensure security requirements are embedded in technology lifecycle activities including design deployment maintenance and decommissioning.
• Provides technical guidance coaching and mentorship to Engineers I/II/III and other team members in executing tasks and responsibilities related to information security and OT network security.
• Supports audits assessments and compliance activities related to OT security network security cyber risk information security standards and applicable regulatory or customer requirements.

• Bachelor's Degree in Computer Science Information Technology or any other related discipline or equivalent related experience.

• Global Industrial Cyber Security Professional (GICSP)
• GIAC Response & Industrial Defense (GRID)
• ISA/IEC 62443 Cybersecurity Certificate or related ISA/IEC 62443 certifications
• Certification in Information Security Strategy Management (CISM)
• Certified Information Systems Security Professional (CISSP)
• CompTIA Security + Certification
• Cisco Certified Network Designations (CCNA CCNP CCIE)

• 6+ years of directly-related or relevant experience preferably in information security.

• Conflict Resolution
• Creativity & Innovation
• Decision Making
• Planning
• Presentation Skills

• Operational technology and industrial network security
• Network architecture routing switching firewalling VPN IDS/IPS proxies and secure remote access
• OT network segmentation Purdue Model architecture zones and conduits zero trust and defense-in-depth
• Industrial cybersecurity frameworks and standards including ISA/IEC 62443 NIST SP 800-82 NIST CSF ISO 27001 PCI and SOX where applicable
• Industrial protocols and environments such as Modbus BACnet OPC Ethernet/IP PROFINET SCADA PLCs HMIs and building automation systems
• Threat modeling root cause analysis vulnerability management patch risk assessment compensating controls and exception management
• Identity and access management for privileged and remote access in OT environments
• Incident response cyber operations threat hunting monitoring and logging for hybrid IT/OT environments
• Cloud-connected OT and IoT/IIoT security considerations
• Security governance compliance assessments risk acceptance processes and third-party risk reviews
• Business continuity disaster recovery and resilience considerations for operational environments

• Microsoft Office Suite
• Security Tools - SIEM EDR Email Security Gateway SOAR Firewall Anti-virus Firewalls VPN IDS/IPS AV proxies etc.
• OT and industrial security monitoring platforms such as Armis Nozomi Networks Claroty Dragos Microsoft Defender for IoT or equivalent technologies
• Firewall and network platforms such as Palo Alto Networks Fortinet Cisco Check Point or equivalent technologies
• Ticketing workflow documentation and collaboration tools
• Scripting or query languages such as Python PowerShell SQL KQL JavaScript HTML/CSS or equivalent tools used for automation reporting and analysis

What We Do

Cencora is a leading pharmaceutical solutions organization centered on improving the lives of people and animals everywhere. With 46000+ global team members we have the opportunity to make a positive impact on healthcare in communities everywhere. Our team members are empowered to activate their careers through a collective of tools and resources designed to support individual career interests and aspirations. We value our listening culture that actions real outcomes and our team members appreciate and recognize one another for contributions that are making a meaningful global impact. No matter what your role is here the work we do together has meaning. When you join our team you become a crucial part of a greater purpose. We’re committed to supporting you personally and professionally so we can achieve more together at the center of health.Protect yourself from job scams: Recruitment scams are on the rise. To protect yourself we urge you to be vigilant and follow these guidelines > https://careers.cencora.com/us/en/job-scams

Gallery