Role Description:
OT Security Specialist (Global Cybersecurity) for a pharmaceutical manufacturing environment. Implement and support OT cybersecurity measures across global manufacturing sites, working with local site teams, engineering, IT infrastructure, and central cybersecurity.
Key Responsibilities:
- Implement and operate OT cybersecurity controls for PLCs, SCADA, DCS, and MES.
- Participate in OT/ICS architecture reviews and maintain standards aligned with ISA/IEC 62443 and NIST SP 800-82.
- Manage identity and access for OT/production systems (system-to-system access, ITβOT integrations, segregation of duties, least privilege).
- Support OT security monitoring; collaborate with SOC to triage alerts, investigate incidents, and identify risks/vulnerabilities/malicious activity.
- Plan and execute OT patching strategies to minimize operational impact and maintain validation status.
- Operate/maintain OT security tooling (e.g., EDR, asset discovery/monitoring, vulnerability detection), including configuration, testing, documentation, and controlled deployments.
- Develop OT security policies/standards/SOPs; support audit readiness, regulatory compliance, and OT change management (traceability/validation/production safety).
- Provide OT security awareness and hands-on support; perform site assessments and remediation planning.
Required Qualifications:
- Bachelorβs degree in Cybersecurity/IT/Engineering/Computer Science (or related); equivalent experience acceptable.
- 4β7 years overall IT/technical; 3β5 years in cybersecurity, OT security, or industrial systems.
- Foundational OT/ICS knowledge.
- Identity and access management (system accounts, authn/authz, least privilege).
- Network security concepts (firewalls, ports/protocols, segmentation).
- Familiarity with SIEM/security monitoring; ability to support troubleshooting and incident investigation.
- Cross-functional collaboration experience; strong communication skills in global environments.
Preferred Qualifications:
- Pharmaceutical/manufacturing/regulated industrial experience.
- Exposure to OT security frameworks (ISA/IEC 62443, NIST, Purdue Model).
- Certifications: GICSP, ISA/IEC 62443 (CFS or related), Security+, CISSP, CISM (or associate equivalents).
- Experience with or supporting a 24x7 SOC.