OT Security Engineer

Role Summary

OT Security Engineer providing technical expertise and implementation resources for all automation and control systems activities on new and existing equipment and facilities in the New England Region. The role involves leading key activities to progress careers while ensuring OT security standards are maintained across identified workstreams, managing vendors, and delivering technical input throughout solution design, development, testing, and implementation.

Responsibilities

• Liaising with the Site Team with assets residing on the OT with aiding in reviews, audits and any questions / queries with relation to OT security
• Maintaining the OT security standard requirements on the identified workstreams OT
• Ensuring vendors are managed appropriately at site in terms of OT security compliance
• Responsible for OT security related works in the identified workstream, including Capital Projects, to ensure they comply with the GSK OT Security standards, guidance, processes and procedures
• Support delivery of cyber security training to the site
• Responsible for engaging with GSK OT teams to deliver projects or provide service
• Responsible for input into improvement strategies to deliver business benefits
• Responsible for providing technical input during solution design, development, testing and implementation
• To act as an OT Network Technical authority on related matters where required
• To act as an advocate for OT Cybersecurity, enabling supply divisions to maximize the exploitation of technology

Qualifications

• Required: Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field.
• Required: 5+ years of experience in cybersecurity, with at least 2 years focused on OT environments.
• Required: Knowledge of ICS, SCADA, and OT security principles.
• Required: Familiarity with OT protocols (e.g., Modbus, OPC, DNP3) and security tools (e.g., Splunk, Palo Alto Networks, Siemens TIA Portal).
• Required: Experience with regulatory frameworks such as NIST, IEC 62443, and ISO 27001.
• Preferred: Exposure to IT infrastructure and Cyber Security risk reduction
• Preferred: Effective communication skills with the ability to interface with operational, capital projects and senior management within the organization
• Preferred: Certifications such as CISSP, GICSP, or ISA/IEC 62443 Cybersecurity Expert
• Preferred: Strong problem-solving and analytical skills
• Preferred: Ability to communicate complex technical risks to non-technical stakeholders
• Preferred: Experience in the pharmaceutical or manufacturing industry is a plus

Skills

• OT security leadership
• ICS/SCADA security
• OT protocols and security tools
• Regulatory framework knowledge (NIST, IEC 62443, ISO 27001)
• Communication with technical and non-technical stakeholders

Education

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field