Responsibilities:
- Provide technical expertise and implementation resources for automation and control systems activities on new and existing equipment/facilities in the New England Region.
- Liaise with the Site Team on OT assets; support reviews, audits, and OT security questions/queries.
- Maintain OT security standard requirements for identified workstreams.
- Ensure vendors are managed appropriately at site for OT security compliance.
- Lead OT security-related works for identified workstreams, including Capital Projects, ensuring compliance with GSK OT Security standards, guidance, processes, and procedures.
- Support delivery of cyber security training to the site.
- Engage with GSK OT teams to deliver projects or provide service.
- Provide input into improvement strategies to deliver business benefits.
- Provide technical input during solution design, development, testing, and implementation.
- Act as an OT Network technical authority when required.
- Advocate for OT cybersecurity to enable supply divisions to maximize technology exploitation.
Qualifications:
- Bachelorβs degree in Cybersecurity, Computer Science, Engineering, or related field.
- 5+ years of cybersecurity experience, including at least 2 years focused on OT environments.
- Knowledge of ICS, SCADA, and OT security principles.
- Familiarity with OT protocols (e.g., Modbus, OPC, DNP3) and security tools (e.g., Splunk, Palo Alto Networks, Siemens TIA Portal).
- Experience with regulatory frameworks such as NIST, IEC 62443, and ISO 27001.
Preferred Qualifications:
- Exposure to IT infrastructure and cyber security risk reduction.
- Effective communication with operational/capital projects and senior management.
- Certifications such as CISSP, GICSP, or ISA/IEC 62443 Cybersecurity Expert.
- Strong problem-solving and analytical skills.
- Ability to communicate complex technical risks to non-technical stakeholders.
- Experience in pharmaceutical or manufacturing industry (plus).